From a76b3bf0a68ea9737def2b1437f7d565a4f44164 Mon Sep 17 00:00:00 2001
From: Kenji Urushima <kenji.urushima@gmail.com>
Date: Thu, 17 Feb 2022 03:32:03 +0900
Subject: [PATCH] 10.5.6 release

---
 ChangeLog.txt                   | 5 +++++
 api/symbols/src/x509crl.js.html | 2 +-
 bower.json                      | 2 +-
 jsrsasign-all-min.js            | 4 ++--
 jsrsasign-jwths-min.js          | 2 +-
 jsrsasign-rsa-min.js            | 2 +-
 min/x509crl.min.js              | 2 +-
 npm/lib/jsrsasign-all-min.js    | 4 ++--
 npm/lib/jsrsasign-jwths-min.js  | 2 +-
 npm/lib/jsrsasign-rsa-min.js    | 2 +-
 npm/lib/jsrsasign.js            | 4 ++--
 npm/package.json                | 2 +-
 src/x509crl.js                  | 2 +-
 13 files changed, 20 insertions(+), 15 deletions(-)

diff --git a/ChangeLog.txt b/ChangeLog.txt
index cc2c8b4b..3afb451d 100755
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,6 +1,11 @@
 
 ChangeLog for jsrsasign
 
+X509CRL.findRevCert bugfix
+* Changes from 10.5.5 to 10.5.6 (2022-Feb-17)
+  - src/x509crl.js X509CRL class
+    - fix sn error in findRevCert 
+
 CRL parser update
 * Changes from 10.5.4 to 10.5.5 (2022-Feb-17)
   - src/x509crl.js X509CRL class
diff --git a/api/symbols/src/x509crl.js.html b/api/symbols/src/x509crl.js.html
index 838d8a0c..a82f2d48 100644
--- a/api/symbols/src/x509crl.js.html
+++ b/api/symbols/src/x509crl.js.html
@@ -353,7 +353,7 @@
 <span class='line'>346</span> </span><span class="WHIT">    </span><span class="NAME">this.findRevCert</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">function</span><span class="PUNC">(</span><span class="NAME">sCert</span><span class="PUNC">)</span><span class="WHIT"> </span><span class="PUNC">{</span><span class="WHIT">
 <span class='line'>347</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">x</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="KEYW">new</span><span class="WHIT"> </span><span class="NAME">X509</span><span class="PUNC">(</span><span class="NAME">sCert</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
 <span class='line'>348</span> </span><span class="WHIT">	</span><span class="KEYW">var</span><span class="WHIT"> </span><span class="NAME">hSN</span><span class="WHIT"> </span><span class="PUNC">=</span><span class="WHIT"> </span><span class="NAME">x.getSerialNumberHex</span><span class="PUNC">(</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
-<span class='line'>349</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">this.findRevCertBySN</span><span class="PUNC">(</span><span class="NAME">sn</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
+<span class='line'>349</span> </span><span class="WHIT">	</span><span class="KEYW">return</span><span class="WHIT"> </span><span class="NAME">this.findRevCertBySN</span><span class="PUNC">(</span><span class="NAME">hSN</span><span class="PUNC">)</span><span class="PUNC">;</span><span class="WHIT">
 <span class='line'>350</span> </span><span class="WHIT">    </span><span class="PUNC">}</span><span class="PUNC">;</span><span class="WHIT">
 <span class='line'>351</span> </span><span class="WHIT">    
 <span class='line'>352</span>     </span><span class="COMM">/**
diff --git a/bower.json b/bower.json
index 8553ea49..f2b2ecbe 100644
--- a/bower.json
+++ b/bower.json
@@ -1,6 +1,6 @@
 {
   "name": "kjur-jsrsasign",
-  "version": "10.5.5",
+  "version": "10.5.6",
   "main": "jsrsasign-all-min.js",
   "description": "The 'jsrsasign' (RSA-Sign JavaScript Library) is an opensource free cryptography library supporting RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CRL, OCSP, CMS SignedData, TimeStamp, CAdES, JWS and JWT in pure JavaScript.",
   "license": "MIT",
diff --git a/jsrsasign-all-min.js b/jsrsasign-all-min.js
index a8a1c6f2..e458b2ff 100644
--- a/jsrsasign-all-min.js
+++ b/jsrsasign-all-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(all) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(all) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
@@ -234,6 +234,6 @@ var KEYUTIL=function(){var d=function(p,r,q){return k(CryptoJS.AES,p,r,q)};var e
 RSAKey.getPosArrayOfChildrenFromHex=function(a){return ASN1HEX.getChildIdx(a,0)};RSAKey.getHexValueArrayOfChildrenFromHex=function(f){var n=ASN1HEX;var i=n.getV;var k=RSAKey.getPosArrayOfChildrenFromHex(f);var e=i(f,k[0]);var j=i(f,k[1]);var b=i(f,k[2]);var c=i(f,k[3]);var h=i(f,k[4]);var g=i(f,k[5]);var m=i(f,k[6]);var l=i(f,k[7]);var d=i(f,k[8]);var k=new Array();k.push(e,j,b,c,h,g,m,l,d);return k};RSAKey.prototype.readPrivateKeyFromPEMString=function(d){var c=pemtohex(d);var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS5PrvKeyHex=function(c){var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS8PrvKeyHex=function(e){var c,i,k,b,a,f,d,j;var m=ASN1HEX;var l=m.getVbyListEx;if(m.isASN1HEX(e)===false){throw new Error("not ASN.1 hex string")}try{c=l(e,0,[2,0,1],"02");i=l(e,0,[2,0,2],"02");k=l(e,0,[2,0,3],"02");b=l(e,0,[2,0,4],"02");a=l(e,0,[2,0,5],"02");f=l(e,0,[2,0,6],"02");d=l(e,0,[2,0,7],"02");j=l(e,0,[2,0,8],"02")}catch(g){throw new Error("malformed PKCS#8 plain RSA private key")}this.setPrivateEx(c,i,k,b,a,f,d,j)};RSAKey.prototype.readPKCS5PubKeyHex=function(c){var e=ASN1HEX;var b=e.getV;if(e.isASN1HEX(c)===false){throw new Error("keyHex is not ASN.1 hex string")}var a=e.getChildIdx(c,0);if(a.length!==2||c.substr(a[0],2)!=="02"||c.substr(a[1],2)!=="02"){throw new Error("wrong hex for PKCS#5 public key")}var f=b(c,a[0]);var d=b(c,a[1]);this.setPublic(f,d)};RSAKey.prototype.readPKCS8PubKeyHex=function(b){var c=ASN1HEX;if(c.isASN1HEX(b)===false){throw new Error("not ASN.1 hex string")}if(c.getTLVbyListEx(b,0,[0,0])!=="06092a864886f70d010101"){throw new Error("not PKCS8 RSA public key")}var a=c.getTLVbyListEx(b,0,[1,0]);this.readPKCS5PubKeyHex(a)};RSAKey.prototype.readCertPubKeyHex=function(b,d){var a,c;a=new X509();a.readCertHex(b);c=a.getPublicKeyHex();this.readPKCS8PubKeyHex(c)};
 var _RE_HEXDECONLY=new RegExp("[^0-9a-f]","gi");function _rsasign_getHexPaddedDigestInfoForString(d,e,a){var b=function(f){return KJUR.crypto.Util.hashString(f,a)};var c=b(d);return KJUR.crypto.Util.getPaddedDigestInfoHex(c,a,e)}function _zeroPaddingOfSignature(e,d){var c="";var a=d/4-e.length;for(var b=0;b<a;b++){c=c+"0"}return c+e}RSAKey.prototype.sign=function(d,a){var b=function(e){return KJUR.crypto.Util.hashString(e,a)};var c=b(d);return this.signWithMessageHash(c,a)};RSAKey.prototype.signWithMessageHash=function(e,c){var f=KJUR.crypto.Util.getPaddedDigestInfoHex(e,c,this.n.bitLength());var b=parseBigInt(f,16);var d=this.doPrivate(b);var a=d.toString(16);return _zeroPaddingOfSignature(a,this.n.bitLength())};function pss_mgf1_str(c,a,e){var b="",d=0;while(b.length<a){b+=hextorstr(e(rstrtohex(c+String.fromCharCode.apply(String,[(d&4278190080)>>24,(d&16711680)>>16,(d&65280)>>8,d&255]))));d+=1}return b}RSAKey.prototype.signPSS=function(e,a,d){var c=function(f){return KJUR.crypto.Util.hashHex(f,a)};var b=c(rstrtohex(e));if(d===undefined){d=-1}return this.signWithMessageHashPSS(b,a,d)};RSAKey.prototype.signWithMessageHashPSS=function(l,a,k){var b=hextorstr(l);var g=b.length;var m=this.n.bitLength()-1;var c=Math.ceil(m/8);var d;var o=function(i){return KJUR.crypto.Util.hashHex(i,a)};if(k===-1||k===undefined){k=g}else{if(k===-2){k=c-g-2}else{if(k<-2){throw new Error("invalid salt length")}}}if(c<(g+k+2)){throw new Error("data too long")}var f="";if(k>0){f=new Array(k);new SecureRandom().nextBytes(f);f=String.fromCharCode.apply(String,f)}var n=hextorstr(o(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+b+f)));var j=[];for(d=0;d<c-k-g-2;d+=1){j[d]=0}var e=String.fromCharCode.apply(String,j)+"\x01"+f;var h=pss_mgf1_str(n,e.length,o);var q=[];for(d=0;d<e.length;d+=1){q[d]=e.charCodeAt(d)^h.charCodeAt(d)}var p=(65280>>(8*c-m))&255;q[0]&=~p;for(d=0;d<g;d++){q.push(n.charCodeAt(d))}q.push(188);return _zeroPaddingOfSignature(this.doPrivate(new BigInteger(q)).toString(16),this.n.bitLength())};function _rsasign_getDecryptSignatureBI(a,d,c){var b=new RSAKey();b.setPublic(d,c);var e=b.doPublic(a);return e}function _rsasign_getHexDigestInfoFromSig(a,c,b){var e=_rsasign_getDecryptSignatureBI(a,c,b);var d=e.toString(16).replace(/^1f+00/,"");return d}function _rsasign_getAlgNameAndHashFromHexDisgestInfo(f){for(var e in KJUR.crypto.Util.DIGESTINFOHEAD){var d=KJUR.crypto.Util.DIGESTINFOHEAD[e];var b=d.length;if(f.substring(0,b)==d){var c=[e,f.substring(b)];return c}}return[]}RSAKey.prototype.verify=function(f,l){l=l.toLowerCase();if(l.match(/^[0-9a-f]+$/)==null){return false}var b=parseBigInt(l,16);var k=this.n.bitLength();if(b.bitLength()>k){return false}var j=this.doPublic(b);var i=j.toString(16);if(i.length+3!=k/4){return false}var e=i.replace(/^1f+00/,"");var g=_rsasign_getAlgNameAndHashFromHexDisgestInfo(e);if(g.length==0){return false}var d=g[0];var h=g[1];var a=function(m){return KJUR.crypto.Util.hashString(m,d)};var c=a(f);return(h==c)};RSAKey.prototype.verifyWithMessageHash=function(e,a){if(a.length!=Math.ceil(this.n.bitLength()/4)){return false}var b=parseBigInt(a,16);if(b.bitLength()>this.n.bitLength()){return 0}var h=this.doPublic(b);var g=h.toString(16).replace(/^1f+00/,"");var c=_rsasign_getAlgNameAndHashFromHexDisgestInfo(g);if(c.length==0){return false}var d=c[0];var f=c[1];return(f==e)};RSAKey.prototype.verifyPSS=function(c,b,a,f){var e=function(g){return KJUR.crypto.Util.hashHex(g,a)};var d=e(rstrtohex(c));if(f===undefined){f=-1}return this.verifyWithMessageHashPSS(d,b,a,f)};RSAKey.prototype.verifyWithMessageHashPSS=function(f,s,l,c){if(s.length!=Math.ceil(this.n.bitLength()/4)){return false}var k=new BigInteger(s,16);var r=function(i){return KJUR.crypto.Util.hashHex(i,l)};var j=hextorstr(f);var h=j.length;var g=this.n.bitLength()-1;var m=Math.ceil(g/8);var q;if(c===-1||c===undefined){c=h}else{if(c===-2){c=m-h-2}else{if(c<-2){throw new Error("invalid salt length")}}}if(m<(h+c+2)){throw new Error("data too long")}var a=this.doPublic(k).toByteArray();for(q=0;q<a.length;q+=1){a[q]&=255}while(a.length<m){a.unshift(0)}if(a[m-1]!==188){throw new Error("encoded message does not end in 0xbc")}a=String.fromCharCode.apply(String,a);var d=a.substr(0,m-h-1);var e=a.substr(d.length,h);var p=(65280>>(8*m-g))&255;if((d.charCodeAt(0)&p)!==0){throw new Error("bits beyond keysize not zero")}var n=pss_mgf1_str(e,d.length,r);var o=[];for(q=0;q<d.length;q+=1){o[q]=d.charCodeAt(q)^n.charCodeAt(q)}o[0]&=~p;var b=m-h-c-2;for(q=0;q<b;q+=1){if(o[q]!==0){throw new Error("leftmost octets not zero")}}if(o[b]!==1){throw new Error("0x01 marker not found")}return e===hextorstr(r(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+j+String.fromCharCode.apply(String,o.slice(-c)))))};RSAKey.SALT_LEN_HLEN=-1;RSAKey.SALT_LEN_MAX=-2;RSAKey.SALT_LEN_RECOVER=-2;
 function X509(r){var k=ASN1HEX,o=k.getChildIdx,h=k.getV,u=k.dump,g=k.parse,b=k.getTLV,c=k.getVbyList,l=k.getVbyListEx,a=k.getTLVbyList,m=k.getTLVbyListEx,i=k.getIdxbyList,e=k.getIdxbyListEx,j=k.getVidx,t=k.getInt,q=k.oidname,n=k.hextooidstr,d=X509,s=pemtohex,f;try{f=KJUR.asn1.x509.AlgorithmIdentifier.PSSNAME2ASN1TLV}catch(p){}this.HEX2STAG={"0c":"utf8","13":"prn","16":"ia5","1a":"vis","1e":"bmp"};this.hex=null;this.version=0;this.foffset=0;this.aExtInfo=null;this.getVersion=function(){if(this.hex===null||this.version!==0){return this.version}var w=a(this.hex,0,[0,0]);if(w.substr(0,2)=="a0"){var x=a(w,0,[0]);var v=t(x,0);if(v<0||2<v){throw new Error("malformed version field")}this.version=v+1;return this.version}else{this.version=1;this.foffset=-1;return 1}};this.getSerialNumberHex=function(){return l(this.hex,0,[0,0],"02")};this.getSignatureAlgorithmField=function(){var v=m(this.hex,0,[0,1]);return this.getAlgorithmIdentifierName(v)};this.getAlgorithmIdentifierName=function(v){for(var w in f){if(v===f[w]){return w}}return q(l(v,0,[0],"06"))};this.getIssuer=function(){return this.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return a(this.hex,0,[0,3+this.foffset],"30")};this.getIssuerString=function(){var v=this.getIssuer();return v.str};this.getSubject=function(){return this.getX500Name(this.getSubjectHex())};this.getSubjectHex=function(){return a(this.hex,0,[0,5+this.foffset],"30")};this.getSubjectString=function(){var v=this.getSubject();return v.str};this.getNotBefore=function(){var v=c(this.hex,0,[0,4+this.foffset,0]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getNotAfter=function(){var v=c(this.hex,0,[0,4+this.foffset,1]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getPublicKeyHex=function(){return k.getTLVbyList(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyIdx=function(){return i(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyContentIdx=function(){var v=this.getPublicKeyIdx();return i(this.hex,v,[1,0],"30")};this.getPublicKey=function(){return KEYUTIL.getKey(this.getPublicKeyHex(),null,"pkcs8pub")};this.getSignatureAlgorithmName=function(){var v=a(this.hex,0,[1],"30");return this.getAlgorithmIdentifierName(v)};this.getSignatureValueHex=function(){return c(this.hex,0,[2],"03",true)};this.verifySignature=function(x){var y=this.getSignatureAlgorithmField();var v=this.getSignatureValueHex();var w=a(this.hex,0,[0],"30");var z=new KJUR.crypto.Signature({alg:y});z.init(x);z.updateHex(w);return z.verify(v)};this.parseExt=function(E){var x,v,z;if(E===undefined){z=this.hex;if(this.version!==3){return -1}x=i(z,0,[0,7,0],"30");v=o(z,x)}else{z=pemtohex(E);var A=i(z,0,[0,3,0,0],"06");if(h(z,A)!="2a864886f70d01090e"){this.aExtInfo=new Array();return}x=i(z,0,[0,3,0,1,0],"30");v=o(z,x);this.hex=z}this.aExtInfo=new Array();for(var y=0;y<v.length;y++){var C={};C.critical=false;var B=o(z,v[y]);var w=0;if(B.length===3){C.critical=true;w=1}C.oid=k.hextooidstr(c(z,v[y],[0],"06"));var D=i(z,v[y],[1+w]);C.vidx=j(z,D);this.aExtInfo.push(C)}};this.getExtInfo=function(x){var v=this.aExtInfo;var y=x;if(!x.match(/^[0-9.]+$/)){y=KJUR.asn1.x509.OID.name2oid(x)}if(y===""){return undefined}for(var w=0;w<v.length;w++){if(v[w].oid===y){return v[w]}}return undefined};this.getExtBasicConstraints=function(w,A){if(w===undefined&&A===undefined){var y=this.getExtInfo("basicConstraints");if(y===undefined){return undefined}w=b(this.hex,y.vidx);A=y.critical}var v={extname:"basicConstraints"};if(A){v.critical=true}if(w==="3000"){return v}if(w==="30030101ff"){v.cA=true;return v}if(w.substr(0,12)==="30060101ff02"){var z=h(w,10);var x=parseInt(z,16);v.cA=true;v.pathLen=x;return v}throw new Error("hExtV parse error: "+w)};this.getExtKeyUsage=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"keyUsage"};if(y){v.critical=true}v.names=this.getExtKeyUsageString(w).split(",");return v};this.getExtKeyUsageBin=function(w){if(w===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return""}w=b(this.hex,x.vidx)}if(w.length!=8&&w.length!=10){throw new Error("malformed key usage value: "+w)}var v="000000000000000"+parseInt(w.substr(6),16).toString(2);if(w.length==8){v=v.slice(-8)}if(w.length==10){v=v.slice(-16)}v=v.replace(/0+$/,"");if(v==""){v="0"}return v};this.getExtKeyUsageString=function(x){var y=this.getExtKeyUsageBin(x);var v=new Array();for(var w=0;w<y.length;w++){if(y.substr(w,1)=="1"){v.push(X509.KEYUSAGE_NAME[w])}}return v.join(",")};this.getExtSubjectKeyIdentifier=function(x,z){if(x===undefined&&z===undefined){var y=this.getExtInfo("subjectKeyIdentifier");if(y===undefined){return undefined}x=b(this.hex,y.vidx);z=y.critical}var v={extname:"subjectKeyIdentifier"};if(z){v.critical=true}var w=h(x,0);v.kid={hex:w};return v};this.getExtAuthorityKeyIdentifier=function(B,z){if(B===undefined&&z===undefined){var v=this.getExtInfo("authorityKeyIdentifier");if(v===undefined){return undefined}B=b(this.hex,v.vidx);z=v.critical}var C={extname:"authorityKeyIdentifier"};if(z){C.critical=true}var A=o(B,0);for(var w=0;w<A.length;w++){var D=B.substr(A[w],2);if(D==="80"){C.kid={hex:h(B,A[w])}}if(D==="a1"){var y=b(B,A[w]);var x=this.getGeneralNames(y);C.issuer=x[0]["dn"]}if(D==="82"){C.sn={hex:h(B,A[w])}}}return C};this.getExtExtKeyUsage=function(y,A){if(y===undefined&&A===undefined){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return undefined}y=b(this.hex,z.vidx);A=z.critical}var v={extname:"extKeyUsage",array:[]};if(A){v.critical=true}var w=o(y,0);for(var x=0;x<w.length;x++){v.array.push(q(h(y,w[x])))}return v};this.getExtExtKeyUsageName=function(){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return z}var v=new Array();var y=b(this.hex,z.vidx);if(y===""){return v}var w=o(y,0);for(var x=0;x<w.length;x++){v.push(q(h(y,w[x])))}return v};this.getExtSubjectAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("subjectAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"subjectAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getExtIssuerAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("issuerAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"issuerAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getGeneralNames=function(z){var x=o(z,0);var v=[];for(var y=0;y<x.length;y++){var w=this.getGeneralName(b(z,x[y]));if(w!==undefined){v.push(w)}}return v};this.getGeneralName=function(w){var v=w.substr(0,2);var y=h(w,0);var x=hextorstr(y);if(v=="81"){return{rfc822:x}}if(v=="82"){return{dns:x}}if(v=="86"){return{uri:x}}if(v=="87"){return{ip:hextoip(y)}}if(v=="a4"){return{dn:this.getX500Name(y)}}if(v=="a0"){return{other:this.getOtherName(w)}}return undefined};this.getExtSubjectAltName2=function(){var z,C,B;var A=this.getExtInfo("subjectAltName");if(A===undefined){return A}var v=new Array();var y=b(this.hex,A.vidx);var w=o(y,0);for(var x=0;x<w.length;x++){B=y.substr(w[x],2);z=h(y,w[x]);if(B==="81"){C=hextoutf8(z);v.push(["MAIL",C])}if(B==="82"){C=hextoutf8(z);v.push(["DNS",C])}if(B==="84"){C=X509.hex2dn(z,0);v.push(["DN",C])}if(B==="86"){C=hextoutf8(z);v.push(["URI",C])}if(B==="87"){C=hextoip(z);v.push(["IP",C])}}return v};this.getExtCRLDistributionPoints=function(z,B){if(z===undefined&&B===undefined){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return undefined}z=b(this.hex,A.vidx);B=A.critical}var w={extname:"cRLDistributionPoints",array:[]};if(B){w.critical=true}var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);w.array.push(this.getDistributionPoint(v))}return w};this.getDistributionPoint=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.dpname=this.getDistributionPointName(v)}}return x};this.getDistributionPointName=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.full=this.getGeneralNames(v)}}return x};this.getExtCRLDistributionPointsURI=function(){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return A}var v=new Array();var w=o(this.hex,A.vidx);for(var y=0;y<w.length;y++){try{var B=c(this.hex,w[y],[0,0,0],"86");var z=hextoutf8(B);v.push(z)}catch(x){}}return v};this.getExtAIAInfo=function(){var z=this.getExtInfo("authorityInfoAccess");if(z===undefined){return z}var v={ocsp:[],caissuer:[]};var w=o(this.hex,z.vidx);for(var x=0;x<w.length;x++){var A=c(this.hex,w[x],[0],"06");var y=c(this.hex,w[x],[1],"86");if(A==="2b06010505073001"){v.ocsp.push(hextoutf8(y))}if(A==="2b06010505073002"){v.caissuer.push(hextoutf8(y))}}return v};this.getExtAuthorityInfoAccess=function(C,A){if(C===undefined&&A===undefined){var v=this.getExtInfo("authorityInfoAccess");if(v===undefined){return undefined}C=b(this.hex,v.vidx);A=v.critical}var D={extname:"authorityInfoAccess",array:[]};if(A){D.critical=true}var B=o(C,0);for(var w=0;w<B.length;w++){var z=l(C,B[w],[0],"06");var x=c(C,B[w],[1],"86");var y=hextoutf8(x);if(z=="2b06010505073001"){D.array.push({ocsp:y})}else{if(z=="2b06010505073002"){D.array.push({caissuer:y})}else{throw new Error("unknown method: "+z)}}}return D};this.getExtCertificatePolicies=function(z,C){if(z===undefined&&C===undefined){var B=this.getExtInfo("certificatePolicies");if(B===undefined){return undefined}z=b(this.hex,B.vidx);C=B.critical}var v={extname:"certificatePolicies",array:[]};if(C){v.critical=true}var w=o(z,0);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyInformation(A);v.array.push(y)}return v};this.getPolicyInformation=function(z){var v={};var B=c(z,0,[0],"06");v.policyoid=q(B);var C=e(z,0,[1],"30");if(C!=-1){v.array=[];var w=o(z,C);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyQualifierInfo(A);v.array.push(y)}}return v};this.getOtherName=function(x){var v={};var w=o(x,0);var z=c(x,w[0],[],"06");var y=c(x,w[1],[]);v.oid=KJUR.asn1.ASN1Util.oidHexToInt(z);v.obj=g(y);return v};this.getPolicyQualifierInfo=function(w){var v={};var x=c(w,0,[0],"06");if(x==="2b06010505070201"){var z=l(w,0,[1],"16");v.cps=hextorstr(z)}else{if(x==="2b06010505070202"){var y=a(w,0,[1],"30");v.unotice=this.getUserNotice(y)}}return v};this.getUserNotice=function(z){var w={};var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);if(v.substr(0,2)!="30"){w.exptext=this.getDisplayText(v)}}return w};this.getDisplayText=function(w){var x={"0c":"utf8","16":"ia5","1a":"vis","1e":"bmp"};var v={};v.type=x[w.substr(0,2)];v.str=hextorstr(h(w,0));return v};this.getExtCRLNumber=function(w,x){var v={extname:"cRLNumber"};if(x){v.critical=true}if(w.substr(0,2)=="02"){v.num={hex:h(w,0)};return v}throw new Error("hExtV parse error: "+w)};this.getExtCRLReason=function(w,x){var v={extname:"cRLReason"};if(x){v.critical=true}if(w.substr(0,2)=="0a"){v.code=parseInt(h(w,0),16);return v}throw new Error("hExtV parse error: "+w)};this.getExtOcspNonce=function(w,y){var v={extname:"ocspNonce"};if(y){v.critical=true}var x=h(w,0);v.hex=x;return v};this.getExtOcspNoCheck=function(w,x){var v={extname:"ocspNoCheck"};if(x){v.critical=true}return v};this.getExtAdobeTimeStamp=function(y,B){if(y===undefined&&B===undefined){var A=this.getExtInfo("adobeTimeStamp");if(A===undefined){return undefined}y=b(this.hex,A.vidx);B=A.critical}var v={extname:"adobeTimeStamp"};if(B){v.critical=true}var x=o(y,0);if(x.length>1){var C=b(y,x[1]);var w=this.getGeneralName(C);if(w.uri!=undefined){v.uri=w.uri}}if(x.length>2){var z=b(y,x[2]);if(z=="0101ff"){v.reqauth=true}if(z=="010100"){v.reqauth=false}}return v};this.getX500NameRule=function(v){var C=true;var G=true;var F=false;var w="";var z="";var I=null;var D=[];for(var y=0;y<v.length;y++){var A=v[y];for(var x=0;x<A.length;x++){D.push(A[x])}}for(var y=0;y<D.length;y++){var H=D[y];var J=H.ds;var E=H.value;var B=H.type;w+=":"+J;if(J!="prn"&&J!="utf8"&&J!="ia5"){return"mixed"}if(J=="ia5"){if(B!="CN"){return"mixed"}else{if(!KJUR.lang.String.isMail(E)){return"mixed"}else{continue}}}if(B=="C"){if(J=="prn"){continue}else{return"mixed"}}z+=":"+J;if(I==null){I=J}else{if(I!==J){return"mixed"}}}if(I==null){return"prn"}else{return I}};this.getX500Name=function(x){var v=this.getX500NameArray(x);var w=this.dnarraytostr(v);return{array:v,str:w}};this.getX500NameArray=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getRDN(b(y,w[x])))}return v};this.getRDN=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getAttrTypeAndValue(b(y,w[x])))}return v};this.getAttrTypeAndValue=function(x){var v={type:null,value:null,ds:null};var w=o(x,0);var A=c(x,w[0],[],"06");var z=c(x,w[1],[]);var y=KJUR.asn1.ASN1Util.oidHexToInt(A);v.type=KJUR.asn1.x509.OID.oid2atype(y);v.ds=this.HEX2STAG[x.substr(w[1],2)];if(v.ds!="bmp"){v.value=hextoutf8(z)}else{v.value=ucs2hextoutf8(z)}return v};this.readCertPEM=function(v){this.readCertHex(s(v))};this.readCertHex=function(v){this.hex=v;this.getVersion();try{i(this.hex,0,[0,7],"a3");this.parseExt()}catch(w){}};this.getParam=function(){var v={};v.version=this.getVersion();v.serial={hex:this.getSerialNumberHex()};v.sigalg=this.getSignatureAlgorithmField();v.issuer=this.getIssuer();v.notbefore=this.getNotBefore();v.notafter=this.getNotAfter();v.subject=this.getSubject();v.sbjpubkey=hextopem(this.getPublicKeyHex(),"PUBLIC KEY");if(this.aExtInfo.length>0){v.ext=this.getExtParamArray()}v.sighex=this.getSignatureValueHex();return v};this.getExtParamArray=function(w){if(w==undefined){var y=e(this.hex,0,[0,"[3]"]);if(y!=-1){w=m(this.hex,0,[0,"[3]",0],"30")}}var v=[];var x=o(w,0);for(var z=0;z<x.length;z++){var B=b(w,x[z]);var A=this.getExtParam(B);if(A!=null){v.push(A)}}return v};this.getExtParam=function(w){var D={};var y=o(w,0);var z=y.length;if(z!=2&&z!=3){throw new Error("wrong number elements in Extension: "+z+" "+w)}var x=n(c(w,0,[0],"06"));var B=false;if(z==3&&a(w,0,[1])=="0101ff"){B=true}var C=a(w,0,[z-1,0]);var A=undefined;if(x=="2.5.29.14"){A=this.getExtSubjectKeyIdentifier(C,B)}else{if(x=="2.5.29.15"){A=this.getExtKeyUsage(C,B)}else{if(x=="2.5.29.17"){A=this.getExtSubjectAltName(C,B)}else{if(x=="2.5.29.18"){A=this.getExtIssuerAltName(C,B)}else{if(x=="2.5.29.19"){A=this.getExtBasicConstraints(C,B)}else{if(x=="2.5.29.31"){A=this.getExtCRLDistributionPoints(C,B)}else{if(x=="2.5.29.32"){A=this.getExtCertificatePolicies(C,B)}else{if(x=="2.5.29.35"){A=this.getExtAuthorityKeyIdentifier(C,B)}else{if(x=="2.5.29.37"){A=this.getExtExtKeyUsage(C,B)}else{if(x=="1.3.6.1.5.5.7.1.1"){A=this.getExtAuthorityInfoAccess(C,B)}else{if(x=="2.5.29.20"){A=this.getExtCRLNumber(C,B)}else{if(x=="2.5.29.21"){A=this.getExtCRLReason(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.2"){A=this.getExtOcspNonce(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.5"){A=this.getExtOcspNoCheck(C,B)}else{if(x=="1.2.840.113583.1.1.9.1"){A=this.getExtAdobeTimeStamp(C,B)}}}}}}}}}}}}}}}if(A!=undefined){return A}var v={extname:x,extn:C};if(B){v.critical=true}return v};this.findExt=function(w,x){for(var v=0;v<w.length;v++){if(w[v].extname==x){return w[v]}}return null};this.updateExtCDPFullURI=function(z,v){var y=this.findExt(z,"cRLDistributionPoints");if(y==null){return}if(y.array==undefined){return}var B=y.array;for(var x=0;x<B.length;x++){if(B[x].dpname==undefined){continue}if(B[x].dpname.full==undefined){continue}var C=B[x].dpname.full;for(var w=0;w<C.length;w++){var A=C[x];if(A.uri==undefined){continue}A.uri=v}}};this.updateExtAIAOCSP=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].ocsp!=undefined){v[x].ocsp=w}}};this.updateExtAIACAIssuer=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].caissuer!=undefined){v[x].caissuer=w}}};this.dnarraytostr=function(x){function v(y){return y.map(function(z){return w(z).replace(/\+/,"\\+")}).join("+")}function w(y){return y.type+"="+y.value}return"/"+x.map(function(y){return v(y).replace(/\//,"\\/")}).join("/")};this.getInfo=function(){var w=function(O){var N=JSON.stringify(O.array).replace(/[\[\]\{\}\"]/g,"");return N};var C=function(T){var R="";var N=T.array;for(var Q=0;Q<N.length;Q++){var S=N[Q];R+="    policy oid: "+S.policyoid+"\n";if(S.array===undefined){continue}for(var P=0;P<S.array.length;P++){var O=S.array[P];if(O.cps!==undefined){R+="    cps: "+O.cps+"\n"}}}return R};var F=function(R){var Q="";var N=R.array;for(var P=0;P<N.length;P++){var S=N[P];try{if(S.dpname.full[0].uri!==undefined){Q+="    "+S.dpname.full[0].uri+"\n"}}catch(O){}try{if(S.dname.full[0].dn.hex!==undefined){Q+="    "+X509.hex2dn(S.dpname.full[0].dn.hex)+"\n"}}catch(O){}}return Q};var D=function(R){var Q="";var N=R.array;for(var O=0;O<N.length;O++){var P=N[O];if(P.caissuer!==undefined){Q+="    caissuer: "+P.caissuer+"\n"}if(P.ocsp!==undefined){Q+="    ocsp: "+P.ocsp+"\n"}}return Q};var x=X509;var H,G,M;H="Basic Fields\n";H+="  serial number: "+this.getSerialNumberHex()+"\n";H+="  signature algorithm: "+this.getSignatureAlgorithmField()+"\n";H+="  issuer: "+this.getIssuerString()+"\n";H+="  notBefore: "+this.getNotBefore()+"\n";H+="  notAfter: "+this.getNotAfter()+"\n";H+="  subject: "+this.getSubjectString()+"\n";H+="  subject public key info: \n";G=this.getPublicKey();H+="    key algorithm: "+G.type+"\n";if(G.type==="RSA"){H+="    n="+hextoposhex(G.n.toString(16)).substr(0,16)+"...\n";H+="    e="+hextoposhex(G.e.toString(16))+"\n"}M=this.aExtInfo;if(M!==undefined&&M!==null){H+="X509v3 Extensions:\n";for(var J=0;J<M.length;J++){var L=M[J];var v=KJUR.asn1.x509.OID.oid2name(L.oid);if(v===""){v=L.oid}var I="";if(L.critical===true){I="CRITICAL"}H+="  "+v+" "+I+":\n";if(v==="basicConstraints"){var y=this.getExtBasicConstraints();if(y.cA===undefined){H+="    {}\n"}else{H+="    cA=true";if(y.pathLen!==undefined){H+=", pathLen="+y.pathLen}H+="\n"}}else{if(v==="keyUsage"){H+="    "+this.getExtKeyUsageString()+"\n"}else{if(v==="subjectKeyIdentifier"){H+="    "+this.getExtSubjectKeyIdentifier().kid.hex+"\n"}else{if(v==="authorityKeyIdentifier"){var z=this.getExtAuthorityKeyIdentifier();if(z.kid!==undefined){H+="    kid="+z.kid.hex+"\n"}}else{if(v==="extKeyUsage"){var K=this.getExtExtKeyUsage().array;H+="    "+K.join(", ")+"\n"}else{if(v==="subjectAltName"){var A=w(this.getExtSubjectAltName());H+="    "+A+"\n"}else{if(v==="cRLDistributionPoints"){var E=this.getExtCRLDistributionPoints();H+=F(E)}else{if(v==="authorityInfoAccess"){var B=this.getExtAuthorityInfoAccess();H+=D(B)}else{if(v==="certificatePolicies"){H+=C(this.getExtCertificatePolicies())}}}}}}}}}}}H+="signature algorithm: "+this.getSignatureAlgorithmName()+"\n";H+="signature: "+this.getSignatureValueHex().substr(0,16)+"...\n";return H};if(typeof r=="string"){if(r.indexOf("-----BEGIN")!=-1){this.readCertPEM(r)}else{if(KJUR.lang.String.isHex(r)){this.readCertHex(r)}}}}X509.hex2dn=function(e,b){if(b===undefined){b=0}var a=new X509();var c=ASN1HEX.getTLV(e,b);var d=a.getX500Name(e);return d.str};X509.hex2rdn=function(f,b){if(b===undefined){b=0}if(f.substr(b,2)!=="31"){throw new Error("malformed RDN")}var c=new Array();var d=ASN1HEX.getChildIdx(f,b);for(var e=0;e<d.length;e++){c.push(X509.hex2attrTypeValue(f,d[e]))}c=c.map(function(a){return a.replace("+","\\+")});return c.join("+")};X509.hex2attrTypeValue=function(d,i){var j=ASN1HEX;var h=j.getV;if(i===undefined){i=0}if(d.substr(i,2)!=="30"){throw new Error("malformed attribute type and value")}var g=j.getChildIdx(d,i);if(g.length!==2||d.substr(g[0],2)!=="06"){"malformed attribute type and value"}var b=h(d,g[0]);var f=KJUR.asn1.ASN1Util.oidHexToInt(b);var e=KJUR.asn1.x509.OID.oid2atype(f);var a=h(d,g[1]);var c=hextorstr(a);return e+"="+c};X509.getPublicKeyFromCertHex=function(b){var a=new X509();a.readCertHex(b);return a.getPublicKey()};X509.getPublicKeyFromCertPEM=function(b){var a=new X509();a.readCertPEM(b);return a.getPublicKey()};X509.getPublicKeyInfoPropOfCertPEM=function(c){var e=ASN1HEX;var g=e.getVbyList;var b={};var a,f,d;b.algparam=null;a=new X509();a.readCertPEM(c);f=a.getPublicKeyHex();b.keyhex=g(f,0,[1],"03").substr(2);b.algoid=g(f,0,[0,0],"06");if(b.algoid==="2a8648ce3d0201"){b.algparam=g(f,0,[0,1],"06")}return b};X509.KEYUSAGE_NAME=["digitalSignature","nonRepudiation","keyEncipherment","dataEncipherment","keyAgreement","keyCertSign","cRLSign","encipherOnly","decipherOnly"];
-var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(sn)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
+var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(o)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWS=function(){var b=KJUR,a=b.jws.JWS,c=a.isSafeJSONString;this.parseJWS=function(g,j){if((this.parsedJWS!==undefined)&&(j||(this.parsedJWS.sigvalH!==undefined))){return}var i=g.match(/^([^.]+)\.([^.]+)\.([^.]+)$/);if(i==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}var k=i[1];var e=i[2];var l=i[3];var n=k+"."+e;this.parsedJWS={};this.parsedJWS.headB64U=k;this.parsedJWS.payloadB64U=e;this.parsedJWS.sigvalB64U=l;this.parsedJWS.si=n;if(!j){var h=b64utohex(l);var f=parseBigInt(h,16);this.parsedJWS.sigvalH=h;this.parsedJWS.sigvalBI=f}var d=b64utoutf8(k);var m=b64utoutf8(e);this.parsedJWS.headS=d;this.parsedJWS.payloadS=m;if(!c(d,this.parsedJWS,"headP")){throw"malformed JSON string for JWS Head: "+d}}};KJUR.jws.JWS.sign=function(j,w,z,A,a){var x=KJUR,n=x.jws,r=n.JWS,h=r.readSafeJSONString,q=r.isSafeJSONString,d=x.crypto,l=d.ECDSA,p=d.Mac,c=d.Signature,u=JSON;var t,k,o;if(typeof w!="string"&&typeof w!="object"){throw"spHeader must be JSON string or object: "+w}if(typeof w=="object"){k=w;t=u.stringify(k)}if(typeof w=="string"){t=w;if(!q(t)){throw"JWS Head is not safe JSON string: "+t}k=h(t)}o=z;if(typeof z=="object"){o=u.stringify(z)}if((j==""||j==null)&&k.alg!==undefined){j=k.alg}if((j!=""&&j!=null)&&k.alg===undefined){k.alg=j;t=u.stringify(k)}if(j!==k.alg){throw"alg and sHeader.alg doesn't match: "+j+"!="+k.alg}var s=null;if(r.jwsalg2sigalg[j]===undefined){throw"unsupported alg name: "+j}else{s=r.jwsalg2sigalg[j]}var e=utf8tob64u(t);var m=utf8tob64u(o);var b=e+"."+m;var y="";if(s.substr(0,4)=="Hmac"){if(A===undefined){throw"mac key shall be specified for HS* alg"}var i=new p({alg:s,prov:"cryptojs",pass:A});i.updateString(b);y=i.doFinal()}else{if(s.indexOf("withECDSA")!=-1){var f=new c({alg:s});f.init(A,a);f.updateString(b);var g=f.sign();y=KJUR.crypto.ECDSA.asn1SigToConcatSig(g)}else{if(s!="none"){var f=new c({alg:s});f.init(A,a);f.updateString(b);y=f.sign()}}}var v=hextob64u(y);return b+"."+v};KJUR.jws.JWS.verify=function(w,B,n){var x=KJUR,q=x.jws,t=q.JWS,i=t.readSafeJSONString,e=x.crypto,p=e.ECDSA,s=e.Mac,d=e.Signature,m;if(typeof RSAKey!==undefined){m=RSAKey}var y=w.split(".");if(y.length!==3){return false}var f=y[0];var r=y[1];var c=f+"."+r;var A=b64utohex(y[2]);var l=i(b64utoutf8(y[0]));var k=null;var z=null;if(l.alg===undefined){throw"algorithm not specified in header"}else{k=l.alg;z=k.substr(0,2)}if(n!=null&&Object.prototype.toString.call(n)==="[object Array]"&&n.length>0){var b=":"+n.join(":")+":";if(b.indexOf(":"+k+":")==-1){throw"algorithm '"+k+"' not accepted in the list"}}if(k!="none"&&B===null){throw"key shall be specified to verify."}if(typeof B=="string"&&B.indexOf("-----BEGIN ")!=-1){B=KEYUTIL.getKey(B)}if(z=="RS"||z=="PS"){if(!(B instanceof m)){throw"key shall be a RSAKey obj for RS* and PS* algs"}}if(z=="ES"){if(!(B instanceof p)){throw"key shall be a ECDSA obj for ES* algs"}}if(k=="none"){}var u=null;if(t.jwsalg2sigalg[l.alg]===undefined){throw"unsupported alg name: "+k}else{u=t.jwsalg2sigalg[k]}if(u=="none"){throw"not supported"}else{if(u.substr(0,4)=="Hmac"){var o=null;if(B===undefined){throw"hexadecimal key shall be specified for HMAC"}var j=new s({alg:u,pass:B});j.updateString(c);o=j.doFinal();return A==o}else{if(u.indexOf("withECDSA")!=-1){var h=null;try{h=p.concatSigToASN1Sig(A)}catch(v){return false}var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(h)}else{var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(A)}}}};KJUR.jws.JWS.parse=function(g){var c=g.split(".");var b={};var f,e,d;if(c.length!=2&&c.length!=3){throw"malformed sJWS: wrong number of '.' splitted elements"}f=c[0];e=c[1];if(c.length==3){d=c[2]}b.headerObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(f));b.payloadObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(e));b.headerPP=JSON.stringify(b.headerObj,null,"  ");if(b.payloadObj==null){b.payloadPP=b64utoutf8(e)}else{b.payloadPP=JSON.stringify(b.payloadObj,null,"  ")}if(d!==undefined){b.sigHex=b64utohex(d)}return b};KJUR.jws.JWS.verifyJWT=function(e,l,r){var d=KJUR,j=d.jws,o=j.JWS,n=o.readSafeJSONString,p=o.inArray,f=o.includedArray;var k=e.split(".");var c=k[0];var i=k[1];var q=c+"."+i;var m=b64utohex(k[2]);var h=n(b64utoutf8(c));var g=n(b64utoutf8(i));if(h.alg===undefined){return false}if(r.alg===undefined){throw"acceptField.alg shall be specified"}if(!p(h.alg,r.alg)){return false}if(g.iss!==undefined&&typeof r.iss==="object"){if(!p(g.iss,r.iss)){return false}}if(g.sub!==undefined&&typeof r.sub==="object"){if(!p(g.sub,r.sub)){return false}}if(g.aud!==undefined&&typeof r.aud==="object"){if(typeof g.aud=="string"){if(!p(g.aud,r.aud)){return false}}else{if(typeof g.aud=="object"){if(!f(g.aud,r.aud)){return false}}}}var b=j.IntDate.getNow();if(r.verifyAt!==undefined&&typeof r.verifyAt==="number"){b=r.verifyAt}if(r.gracePeriod===undefined||typeof r.gracePeriod!=="number"){r.gracePeriod=0}if(g.exp!==undefined&&typeof g.exp=="number"){if(g.exp+r.gracePeriod<b){return false}}if(g.nbf!==undefined&&typeof g.nbf=="number"){if(b<g.nbf-r.gracePeriod){return false}}if(g.iat!==undefined&&typeof g.iat=="number"){if(b<g.iat-r.gracePeriod){return false}}if(g.jti!==undefined&&r.jti!==undefined){if(g.jti!==r.jti){return false}}if(!o.verify(e,l,r.alg)){return false}return true};KJUR.jws.JWS.includedArray=function(b,a){var c=KJUR.jws.JWS.inArray;if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var d=0;d<b.length;d++){if(!c(b[d],a)){return false}}return true};KJUR.jws.JWS.inArray=function(d,b){if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var c=0;c<b.length;c++){if(b[c]==d){return true}}return false};KJUR.jws.JWS.jwsalg2sigalg={HS256:"HmacSHA256",HS384:"HmacSHA384",HS512:"HmacSHA512",RS256:"SHA256withRSA",RS384:"SHA384withRSA",RS512:"SHA512withRSA",ES256:"SHA256withECDSA",ES384:"SHA384withECDSA",ES512:"SHA512withECDSA",PS256:"SHA256withRSAandMGF1",PS384:"SHA384withRSAandMGF1",PS512:"SHA512withRSAandMGF1",none:"none",};KJUR.jws.JWS.isSafeJSONString=function(c,b,d){var e=null;try{e=jsonParse(c);if(typeof e!="object"){return 0}if(e.constructor===Array){return 0}if(b){b[d]=e}return 1}catch(a){return 0}};KJUR.jws.JWS.readSafeJSONString=function(b){var c=null;try{c=jsonParse(b);if(typeof c!="object"){return null}if(c.constructor===Array){return null}return c}catch(a){return null}};KJUR.jws.JWS.getEncodedSignatureValueFromJWS=function(b){var a=b.match(/^[^.]+\.[^.]+\.([^.]+)$/);if(a==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}return a[1]};KJUR.jws.JWS.getJWKthumbprint=function(d){if(d.kty!=="RSA"&&d.kty!=="EC"&&d.kty!=="oct"){throw"unsupported algorithm for JWK Thumprint"}var a="{";if(d.kty==="RSA"){if(typeof d.n!="string"||typeof d.e!="string"){throw"wrong n and e value for RSA key"}a+='"e":"'+d.e+'",';a+='"kty":"'+d.kty+'",';a+='"n":"'+d.n+'"}'}else{if(d.kty==="EC"){if(typeof d.crv!="string"||typeof d.x!="string"||typeof d.y!="string"){throw"wrong crv, x and y value for EC key"}a+='"crv":"'+d.crv+'",';a+='"kty":"'+d.kty+'",';a+='"x":"'+d.x+'",';a+='"y":"'+d.y+'"}'}else{if(d.kty==="oct"){if(typeof d.k!="string"){throw"wrong k value for oct(symmetric) key"}a+='"kty":"'+d.kty+'",';a+='"k":"'+d.k+'"}'}}}var b=rstrtohex(a);var c=KJUR.crypto.Util.hashHex(b,"sha256");var e=hextob64u(c);return e};KJUR.jws.IntDate={};KJUR.jws.IntDate.get=function(c){var b=KJUR.jws.IntDate,d=b.getNow,a=b.getZulu;if(c=="now"){return d()}else{if(c=="now + 1hour"){return d()+60*60}else{if(c=="now + 1day"){return d()+60*60*24}else{if(c=="now + 1month"){return d()+60*60*24*30}else{if(c=="now + 1year"){return d()+60*60*24*365}else{if(c.match(/Z$/)){return a(c)}else{if(c.match(/^[0-9]+$/)){return parseInt(c)}}}}}}}throw"unsupported format: "+c};KJUR.jws.IntDate.getZulu=function(a){return zulutosec(a)};KJUR.jws.IntDate.getNow=function(){var a=~~(new Date()/1000);return a};KJUR.jws.IntDate.intDate2UTCString=function(a){var b=new Date(a*1000);return b.toUTCString()};KJUR.jws.IntDate.intDate2Zulu=function(e){var i=new Date(e*1000),h=("0000"+i.getUTCFullYear()).slice(-4),g=("00"+(i.getUTCMonth()+1)).slice(-2),b=("00"+i.getUTCDate()).slice(-2),a=("00"+i.getUTCHours()).slice(-2),c=("00"+i.getUTCMinutes()).slice(-2),f=("00"+i.getUTCSeconds()).slice(-2);return h+g+b+a+c+f+"Z"};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWSJS=function(){var c=KJUR,b=c.jws,a=b.JWS,d=a.readSafeJSONString;this.aHeader=[];this.sPayload="";this.aSignature=[];this.init=function(){this.aHeader=[];this.sPayload=undefined;this.aSignature=[]};this.initWithJWS=function(f){this.init();var e=f.split(".");if(e.length!=3){throw"malformed input JWS"}this.aHeader.push(e[0]);this.sPayload=e[1];this.aSignature.push(e[2])};this.addSignature=function(e,h,m,k){if(this.sPayload===undefined||this.sPayload===null){throw"there's no JSON-JS signature to add."}var l=this.aHeader.length;if(this.aHeader.length!=this.aSignature.length){throw"aHeader.length != aSignature.length"}try{var f=KJUR.jws.JWS.sign(e,h,this.sPayload,m,k);var j=f.split(".");var n=j[0];var g=j[2];this.aHeader.push(j[0]);this.aSignature.push(j[2])}catch(i){if(this.aHeader.length>l){this.aHeader.pop()}if(this.aSignature.length>l){this.aSignature.pop()}throw"addSignature failed: "+i}};this.verifyAll=function(h){if(this.aHeader.length!==h.length||this.aSignature.length!==h.length){return false}for(var g=0;g<h.length;g++){var f=h[g];if(f.length!==2){return false}var e=this.verifyNth(g,f[0],f[1]);if(e===false){return false}}return true};this.verifyNth=function(f,j,g){if(this.aHeader.length<=f||this.aSignature.length<=f){return false}var h=this.aHeader[f];var k=this.aSignature[f];var l=h+"."+this.sPayload+"."+k;var e=false;try{e=a.verify(l,j,g)}catch(i){return false}return e};this.readJWSJS=function(g){if(typeof g==="string"){var f=d(g);if(f==null){throw"argument is not safe JSON object string"}this.aHeader=f.headers;this.sPayload=f.payload;this.aSignature=f.signatures}else{try{if(g.headers.length>0){this.aHeader=g.headers}else{throw"malformed header"}if(typeof g.payload==="string"){this.sPayload=g.payload}else{throw"malformed signatures"}if(g.signatures.length>0){this.aSignature=g.signatures}else{throw"malformed signatures"}}catch(e){throw"malformed JWS-JS JSON object: "+e}}};this.getJSON=function(){return{headers:this.aHeader,payload:this.sPayload,signatures:this.aSignature}};this.isEmpty=function(){if(this.aHeader.length==0){return 1}return 0}};
diff --git a/jsrsasign-jwths-min.js b/jsrsasign-jwths-min.js
index 581817b5..bacf1b9a 100644
--- a/jsrsasign-jwths-min.js
+++ b/jsrsasign-jwths-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(jwths) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(jwths) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
diff --git a/jsrsasign-rsa-min.js b/jsrsasign-rsa-min.js
index f2a16f0b..a1ac8784 100644
--- a/jsrsasign-rsa-min.js
+++ b/jsrsasign-rsa-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(rsa) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(rsa) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
diff --git a/min/x509crl.min.js b/min/x509crl.min.js
index 88db69a4..7a5573c9 100644
--- a/min/x509crl.min.js
+++ b/min/x509crl.min.js
@@ -1 +1 @@
-var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(sn)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
\ No newline at end of file
+var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(o)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
\ No newline at end of file
diff --git a/npm/lib/jsrsasign-all-min.js b/npm/lib/jsrsasign-all-min.js
index a8a1c6f2..e458b2ff 100644
--- a/npm/lib/jsrsasign-all-min.js
+++ b/npm/lib/jsrsasign-all-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(all) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(all) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
@@ -234,6 +234,6 @@ var KEYUTIL=function(){var d=function(p,r,q){return k(CryptoJS.AES,p,r,q)};var e
 RSAKey.getPosArrayOfChildrenFromHex=function(a){return ASN1HEX.getChildIdx(a,0)};RSAKey.getHexValueArrayOfChildrenFromHex=function(f){var n=ASN1HEX;var i=n.getV;var k=RSAKey.getPosArrayOfChildrenFromHex(f);var e=i(f,k[0]);var j=i(f,k[1]);var b=i(f,k[2]);var c=i(f,k[3]);var h=i(f,k[4]);var g=i(f,k[5]);var m=i(f,k[6]);var l=i(f,k[7]);var d=i(f,k[8]);var k=new Array();k.push(e,j,b,c,h,g,m,l,d);return k};RSAKey.prototype.readPrivateKeyFromPEMString=function(d){var c=pemtohex(d);var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS5PrvKeyHex=function(c){var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS8PrvKeyHex=function(e){var c,i,k,b,a,f,d,j;var m=ASN1HEX;var l=m.getVbyListEx;if(m.isASN1HEX(e)===false){throw new Error("not ASN.1 hex string")}try{c=l(e,0,[2,0,1],"02");i=l(e,0,[2,0,2],"02");k=l(e,0,[2,0,3],"02");b=l(e,0,[2,0,4],"02");a=l(e,0,[2,0,5],"02");f=l(e,0,[2,0,6],"02");d=l(e,0,[2,0,7],"02");j=l(e,0,[2,0,8],"02")}catch(g){throw new Error("malformed PKCS#8 plain RSA private key")}this.setPrivateEx(c,i,k,b,a,f,d,j)};RSAKey.prototype.readPKCS5PubKeyHex=function(c){var e=ASN1HEX;var b=e.getV;if(e.isASN1HEX(c)===false){throw new Error("keyHex is not ASN.1 hex string")}var a=e.getChildIdx(c,0);if(a.length!==2||c.substr(a[0],2)!=="02"||c.substr(a[1],2)!=="02"){throw new Error("wrong hex for PKCS#5 public key")}var f=b(c,a[0]);var d=b(c,a[1]);this.setPublic(f,d)};RSAKey.prototype.readPKCS8PubKeyHex=function(b){var c=ASN1HEX;if(c.isASN1HEX(b)===false){throw new Error("not ASN.1 hex string")}if(c.getTLVbyListEx(b,0,[0,0])!=="06092a864886f70d010101"){throw new Error("not PKCS8 RSA public key")}var a=c.getTLVbyListEx(b,0,[1,0]);this.readPKCS5PubKeyHex(a)};RSAKey.prototype.readCertPubKeyHex=function(b,d){var a,c;a=new X509();a.readCertHex(b);c=a.getPublicKeyHex();this.readPKCS8PubKeyHex(c)};
 var _RE_HEXDECONLY=new RegExp("[^0-9a-f]","gi");function _rsasign_getHexPaddedDigestInfoForString(d,e,a){var b=function(f){return KJUR.crypto.Util.hashString(f,a)};var c=b(d);return KJUR.crypto.Util.getPaddedDigestInfoHex(c,a,e)}function _zeroPaddingOfSignature(e,d){var c="";var a=d/4-e.length;for(var b=0;b<a;b++){c=c+"0"}return c+e}RSAKey.prototype.sign=function(d,a){var b=function(e){return KJUR.crypto.Util.hashString(e,a)};var c=b(d);return this.signWithMessageHash(c,a)};RSAKey.prototype.signWithMessageHash=function(e,c){var f=KJUR.crypto.Util.getPaddedDigestInfoHex(e,c,this.n.bitLength());var b=parseBigInt(f,16);var d=this.doPrivate(b);var a=d.toString(16);return _zeroPaddingOfSignature(a,this.n.bitLength())};function pss_mgf1_str(c,a,e){var b="",d=0;while(b.length<a){b+=hextorstr(e(rstrtohex(c+String.fromCharCode.apply(String,[(d&4278190080)>>24,(d&16711680)>>16,(d&65280)>>8,d&255]))));d+=1}return b}RSAKey.prototype.signPSS=function(e,a,d){var c=function(f){return KJUR.crypto.Util.hashHex(f,a)};var b=c(rstrtohex(e));if(d===undefined){d=-1}return this.signWithMessageHashPSS(b,a,d)};RSAKey.prototype.signWithMessageHashPSS=function(l,a,k){var b=hextorstr(l);var g=b.length;var m=this.n.bitLength()-1;var c=Math.ceil(m/8);var d;var o=function(i){return KJUR.crypto.Util.hashHex(i,a)};if(k===-1||k===undefined){k=g}else{if(k===-2){k=c-g-2}else{if(k<-2){throw new Error("invalid salt length")}}}if(c<(g+k+2)){throw new Error("data too long")}var f="";if(k>0){f=new Array(k);new SecureRandom().nextBytes(f);f=String.fromCharCode.apply(String,f)}var n=hextorstr(o(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+b+f)));var j=[];for(d=0;d<c-k-g-2;d+=1){j[d]=0}var e=String.fromCharCode.apply(String,j)+"\x01"+f;var h=pss_mgf1_str(n,e.length,o);var q=[];for(d=0;d<e.length;d+=1){q[d]=e.charCodeAt(d)^h.charCodeAt(d)}var p=(65280>>(8*c-m))&255;q[0]&=~p;for(d=0;d<g;d++){q.push(n.charCodeAt(d))}q.push(188);return _zeroPaddingOfSignature(this.doPrivate(new BigInteger(q)).toString(16),this.n.bitLength())};function _rsasign_getDecryptSignatureBI(a,d,c){var b=new RSAKey();b.setPublic(d,c);var e=b.doPublic(a);return e}function _rsasign_getHexDigestInfoFromSig(a,c,b){var e=_rsasign_getDecryptSignatureBI(a,c,b);var d=e.toString(16).replace(/^1f+00/,"");return d}function _rsasign_getAlgNameAndHashFromHexDisgestInfo(f){for(var e in KJUR.crypto.Util.DIGESTINFOHEAD){var d=KJUR.crypto.Util.DIGESTINFOHEAD[e];var b=d.length;if(f.substring(0,b)==d){var c=[e,f.substring(b)];return c}}return[]}RSAKey.prototype.verify=function(f,l){l=l.toLowerCase();if(l.match(/^[0-9a-f]+$/)==null){return false}var b=parseBigInt(l,16);var k=this.n.bitLength();if(b.bitLength()>k){return false}var j=this.doPublic(b);var i=j.toString(16);if(i.length+3!=k/4){return false}var e=i.replace(/^1f+00/,"");var g=_rsasign_getAlgNameAndHashFromHexDisgestInfo(e);if(g.length==0){return false}var d=g[0];var h=g[1];var a=function(m){return KJUR.crypto.Util.hashString(m,d)};var c=a(f);return(h==c)};RSAKey.prototype.verifyWithMessageHash=function(e,a){if(a.length!=Math.ceil(this.n.bitLength()/4)){return false}var b=parseBigInt(a,16);if(b.bitLength()>this.n.bitLength()){return 0}var h=this.doPublic(b);var g=h.toString(16).replace(/^1f+00/,"");var c=_rsasign_getAlgNameAndHashFromHexDisgestInfo(g);if(c.length==0){return false}var d=c[0];var f=c[1];return(f==e)};RSAKey.prototype.verifyPSS=function(c,b,a,f){var e=function(g){return KJUR.crypto.Util.hashHex(g,a)};var d=e(rstrtohex(c));if(f===undefined){f=-1}return this.verifyWithMessageHashPSS(d,b,a,f)};RSAKey.prototype.verifyWithMessageHashPSS=function(f,s,l,c){if(s.length!=Math.ceil(this.n.bitLength()/4)){return false}var k=new BigInteger(s,16);var r=function(i){return KJUR.crypto.Util.hashHex(i,l)};var j=hextorstr(f);var h=j.length;var g=this.n.bitLength()-1;var m=Math.ceil(g/8);var q;if(c===-1||c===undefined){c=h}else{if(c===-2){c=m-h-2}else{if(c<-2){throw new Error("invalid salt length")}}}if(m<(h+c+2)){throw new Error("data too long")}var a=this.doPublic(k).toByteArray();for(q=0;q<a.length;q+=1){a[q]&=255}while(a.length<m){a.unshift(0)}if(a[m-1]!==188){throw new Error("encoded message does not end in 0xbc")}a=String.fromCharCode.apply(String,a);var d=a.substr(0,m-h-1);var e=a.substr(d.length,h);var p=(65280>>(8*m-g))&255;if((d.charCodeAt(0)&p)!==0){throw new Error("bits beyond keysize not zero")}var n=pss_mgf1_str(e,d.length,r);var o=[];for(q=0;q<d.length;q+=1){o[q]=d.charCodeAt(q)^n.charCodeAt(q)}o[0]&=~p;var b=m-h-c-2;for(q=0;q<b;q+=1){if(o[q]!==0){throw new Error("leftmost octets not zero")}}if(o[b]!==1){throw new Error("0x01 marker not found")}return e===hextorstr(r(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+j+String.fromCharCode.apply(String,o.slice(-c)))))};RSAKey.SALT_LEN_HLEN=-1;RSAKey.SALT_LEN_MAX=-2;RSAKey.SALT_LEN_RECOVER=-2;
 function X509(r){var k=ASN1HEX,o=k.getChildIdx,h=k.getV,u=k.dump,g=k.parse,b=k.getTLV,c=k.getVbyList,l=k.getVbyListEx,a=k.getTLVbyList,m=k.getTLVbyListEx,i=k.getIdxbyList,e=k.getIdxbyListEx,j=k.getVidx,t=k.getInt,q=k.oidname,n=k.hextooidstr,d=X509,s=pemtohex,f;try{f=KJUR.asn1.x509.AlgorithmIdentifier.PSSNAME2ASN1TLV}catch(p){}this.HEX2STAG={"0c":"utf8","13":"prn","16":"ia5","1a":"vis","1e":"bmp"};this.hex=null;this.version=0;this.foffset=0;this.aExtInfo=null;this.getVersion=function(){if(this.hex===null||this.version!==0){return this.version}var w=a(this.hex,0,[0,0]);if(w.substr(0,2)=="a0"){var x=a(w,0,[0]);var v=t(x,0);if(v<0||2<v){throw new Error("malformed version field")}this.version=v+1;return this.version}else{this.version=1;this.foffset=-1;return 1}};this.getSerialNumberHex=function(){return l(this.hex,0,[0,0],"02")};this.getSignatureAlgorithmField=function(){var v=m(this.hex,0,[0,1]);return this.getAlgorithmIdentifierName(v)};this.getAlgorithmIdentifierName=function(v){for(var w in f){if(v===f[w]){return w}}return q(l(v,0,[0],"06"))};this.getIssuer=function(){return this.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return a(this.hex,0,[0,3+this.foffset],"30")};this.getIssuerString=function(){var v=this.getIssuer();return v.str};this.getSubject=function(){return this.getX500Name(this.getSubjectHex())};this.getSubjectHex=function(){return a(this.hex,0,[0,5+this.foffset],"30")};this.getSubjectString=function(){var v=this.getSubject();return v.str};this.getNotBefore=function(){var v=c(this.hex,0,[0,4+this.foffset,0]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getNotAfter=function(){var v=c(this.hex,0,[0,4+this.foffset,1]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getPublicKeyHex=function(){return k.getTLVbyList(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyIdx=function(){return i(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyContentIdx=function(){var v=this.getPublicKeyIdx();return i(this.hex,v,[1,0],"30")};this.getPublicKey=function(){return KEYUTIL.getKey(this.getPublicKeyHex(),null,"pkcs8pub")};this.getSignatureAlgorithmName=function(){var v=a(this.hex,0,[1],"30");return this.getAlgorithmIdentifierName(v)};this.getSignatureValueHex=function(){return c(this.hex,0,[2],"03",true)};this.verifySignature=function(x){var y=this.getSignatureAlgorithmField();var v=this.getSignatureValueHex();var w=a(this.hex,0,[0],"30");var z=new KJUR.crypto.Signature({alg:y});z.init(x);z.updateHex(w);return z.verify(v)};this.parseExt=function(E){var x,v,z;if(E===undefined){z=this.hex;if(this.version!==3){return -1}x=i(z,0,[0,7,0],"30");v=o(z,x)}else{z=pemtohex(E);var A=i(z,0,[0,3,0,0],"06");if(h(z,A)!="2a864886f70d01090e"){this.aExtInfo=new Array();return}x=i(z,0,[0,3,0,1,0],"30");v=o(z,x);this.hex=z}this.aExtInfo=new Array();for(var y=0;y<v.length;y++){var C={};C.critical=false;var B=o(z,v[y]);var w=0;if(B.length===3){C.critical=true;w=1}C.oid=k.hextooidstr(c(z,v[y],[0],"06"));var D=i(z,v[y],[1+w]);C.vidx=j(z,D);this.aExtInfo.push(C)}};this.getExtInfo=function(x){var v=this.aExtInfo;var y=x;if(!x.match(/^[0-9.]+$/)){y=KJUR.asn1.x509.OID.name2oid(x)}if(y===""){return undefined}for(var w=0;w<v.length;w++){if(v[w].oid===y){return v[w]}}return undefined};this.getExtBasicConstraints=function(w,A){if(w===undefined&&A===undefined){var y=this.getExtInfo("basicConstraints");if(y===undefined){return undefined}w=b(this.hex,y.vidx);A=y.critical}var v={extname:"basicConstraints"};if(A){v.critical=true}if(w==="3000"){return v}if(w==="30030101ff"){v.cA=true;return v}if(w.substr(0,12)==="30060101ff02"){var z=h(w,10);var x=parseInt(z,16);v.cA=true;v.pathLen=x;return v}throw new Error("hExtV parse error: "+w)};this.getExtKeyUsage=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"keyUsage"};if(y){v.critical=true}v.names=this.getExtKeyUsageString(w).split(",");return v};this.getExtKeyUsageBin=function(w){if(w===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return""}w=b(this.hex,x.vidx)}if(w.length!=8&&w.length!=10){throw new Error("malformed key usage value: "+w)}var v="000000000000000"+parseInt(w.substr(6),16).toString(2);if(w.length==8){v=v.slice(-8)}if(w.length==10){v=v.slice(-16)}v=v.replace(/0+$/,"");if(v==""){v="0"}return v};this.getExtKeyUsageString=function(x){var y=this.getExtKeyUsageBin(x);var v=new Array();for(var w=0;w<y.length;w++){if(y.substr(w,1)=="1"){v.push(X509.KEYUSAGE_NAME[w])}}return v.join(",")};this.getExtSubjectKeyIdentifier=function(x,z){if(x===undefined&&z===undefined){var y=this.getExtInfo("subjectKeyIdentifier");if(y===undefined){return undefined}x=b(this.hex,y.vidx);z=y.critical}var v={extname:"subjectKeyIdentifier"};if(z){v.critical=true}var w=h(x,0);v.kid={hex:w};return v};this.getExtAuthorityKeyIdentifier=function(B,z){if(B===undefined&&z===undefined){var v=this.getExtInfo("authorityKeyIdentifier");if(v===undefined){return undefined}B=b(this.hex,v.vidx);z=v.critical}var C={extname:"authorityKeyIdentifier"};if(z){C.critical=true}var A=o(B,0);for(var w=0;w<A.length;w++){var D=B.substr(A[w],2);if(D==="80"){C.kid={hex:h(B,A[w])}}if(D==="a1"){var y=b(B,A[w]);var x=this.getGeneralNames(y);C.issuer=x[0]["dn"]}if(D==="82"){C.sn={hex:h(B,A[w])}}}return C};this.getExtExtKeyUsage=function(y,A){if(y===undefined&&A===undefined){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return undefined}y=b(this.hex,z.vidx);A=z.critical}var v={extname:"extKeyUsage",array:[]};if(A){v.critical=true}var w=o(y,0);for(var x=0;x<w.length;x++){v.array.push(q(h(y,w[x])))}return v};this.getExtExtKeyUsageName=function(){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return z}var v=new Array();var y=b(this.hex,z.vidx);if(y===""){return v}var w=o(y,0);for(var x=0;x<w.length;x++){v.push(q(h(y,w[x])))}return v};this.getExtSubjectAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("subjectAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"subjectAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getExtIssuerAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("issuerAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"issuerAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getGeneralNames=function(z){var x=o(z,0);var v=[];for(var y=0;y<x.length;y++){var w=this.getGeneralName(b(z,x[y]));if(w!==undefined){v.push(w)}}return v};this.getGeneralName=function(w){var v=w.substr(0,2);var y=h(w,0);var x=hextorstr(y);if(v=="81"){return{rfc822:x}}if(v=="82"){return{dns:x}}if(v=="86"){return{uri:x}}if(v=="87"){return{ip:hextoip(y)}}if(v=="a4"){return{dn:this.getX500Name(y)}}if(v=="a0"){return{other:this.getOtherName(w)}}return undefined};this.getExtSubjectAltName2=function(){var z,C,B;var A=this.getExtInfo("subjectAltName");if(A===undefined){return A}var v=new Array();var y=b(this.hex,A.vidx);var w=o(y,0);for(var x=0;x<w.length;x++){B=y.substr(w[x],2);z=h(y,w[x]);if(B==="81"){C=hextoutf8(z);v.push(["MAIL",C])}if(B==="82"){C=hextoutf8(z);v.push(["DNS",C])}if(B==="84"){C=X509.hex2dn(z,0);v.push(["DN",C])}if(B==="86"){C=hextoutf8(z);v.push(["URI",C])}if(B==="87"){C=hextoip(z);v.push(["IP",C])}}return v};this.getExtCRLDistributionPoints=function(z,B){if(z===undefined&&B===undefined){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return undefined}z=b(this.hex,A.vidx);B=A.critical}var w={extname:"cRLDistributionPoints",array:[]};if(B){w.critical=true}var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);w.array.push(this.getDistributionPoint(v))}return w};this.getDistributionPoint=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.dpname=this.getDistributionPointName(v)}}return x};this.getDistributionPointName=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.full=this.getGeneralNames(v)}}return x};this.getExtCRLDistributionPointsURI=function(){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return A}var v=new Array();var w=o(this.hex,A.vidx);for(var y=0;y<w.length;y++){try{var B=c(this.hex,w[y],[0,0,0],"86");var z=hextoutf8(B);v.push(z)}catch(x){}}return v};this.getExtAIAInfo=function(){var z=this.getExtInfo("authorityInfoAccess");if(z===undefined){return z}var v={ocsp:[],caissuer:[]};var w=o(this.hex,z.vidx);for(var x=0;x<w.length;x++){var A=c(this.hex,w[x],[0],"06");var y=c(this.hex,w[x],[1],"86");if(A==="2b06010505073001"){v.ocsp.push(hextoutf8(y))}if(A==="2b06010505073002"){v.caissuer.push(hextoutf8(y))}}return v};this.getExtAuthorityInfoAccess=function(C,A){if(C===undefined&&A===undefined){var v=this.getExtInfo("authorityInfoAccess");if(v===undefined){return undefined}C=b(this.hex,v.vidx);A=v.critical}var D={extname:"authorityInfoAccess",array:[]};if(A){D.critical=true}var B=o(C,0);for(var w=0;w<B.length;w++){var z=l(C,B[w],[0],"06");var x=c(C,B[w],[1],"86");var y=hextoutf8(x);if(z=="2b06010505073001"){D.array.push({ocsp:y})}else{if(z=="2b06010505073002"){D.array.push({caissuer:y})}else{throw new Error("unknown method: "+z)}}}return D};this.getExtCertificatePolicies=function(z,C){if(z===undefined&&C===undefined){var B=this.getExtInfo("certificatePolicies");if(B===undefined){return undefined}z=b(this.hex,B.vidx);C=B.critical}var v={extname:"certificatePolicies",array:[]};if(C){v.critical=true}var w=o(z,0);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyInformation(A);v.array.push(y)}return v};this.getPolicyInformation=function(z){var v={};var B=c(z,0,[0],"06");v.policyoid=q(B);var C=e(z,0,[1],"30");if(C!=-1){v.array=[];var w=o(z,C);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyQualifierInfo(A);v.array.push(y)}}return v};this.getOtherName=function(x){var v={};var w=o(x,0);var z=c(x,w[0],[],"06");var y=c(x,w[1],[]);v.oid=KJUR.asn1.ASN1Util.oidHexToInt(z);v.obj=g(y);return v};this.getPolicyQualifierInfo=function(w){var v={};var x=c(w,0,[0],"06");if(x==="2b06010505070201"){var z=l(w,0,[1],"16");v.cps=hextorstr(z)}else{if(x==="2b06010505070202"){var y=a(w,0,[1],"30");v.unotice=this.getUserNotice(y)}}return v};this.getUserNotice=function(z){var w={};var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);if(v.substr(0,2)!="30"){w.exptext=this.getDisplayText(v)}}return w};this.getDisplayText=function(w){var x={"0c":"utf8","16":"ia5","1a":"vis","1e":"bmp"};var v={};v.type=x[w.substr(0,2)];v.str=hextorstr(h(w,0));return v};this.getExtCRLNumber=function(w,x){var v={extname:"cRLNumber"};if(x){v.critical=true}if(w.substr(0,2)=="02"){v.num={hex:h(w,0)};return v}throw new Error("hExtV parse error: "+w)};this.getExtCRLReason=function(w,x){var v={extname:"cRLReason"};if(x){v.critical=true}if(w.substr(0,2)=="0a"){v.code=parseInt(h(w,0),16);return v}throw new Error("hExtV parse error: "+w)};this.getExtOcspNonce=function(w,y){var v={extname:"ocspNonce"};if(y){v.critical=true}var x=h(w,0);v.hex=x;return v};this.getExtOcspNoCheck=function(w,x){var v={extname:"ocspNoCheck"};if(x){v.critical=true}return v};this.getExtAdobeTimeStamp=function(y,B){if(y===undefined&&B===undefined){var A=this.getExtInfo("adobeTimeStamp");if(A===undefined){return undefined}y=b(this.hex,A.vidx);B=A.critical}var v={extname:"adobeTimeStamp"};if(B){v.critical=true}var x=o(y,0);if(x.length>1){var C=b(y,x[1]);var w=this.getGeneralName(C);if(w.uri!=undefined){v.uri=w.uri}}if(x.length>2){var z=b(y,x[2]);if(z=="0101ff"){v.reqauth=true}if(z=="010100"){v.reqauth=false}}return v};this.getX500NameRule=function(v){var C=true;var G=true;var F=false;var w="";var z="";var I=null;var D=[];for(var y=0;y<v.length;y++){var A=v[y];for(var x=0;x<A.length;x++){D.push(A[x])}}for(var y=0;y<D.length;y++){var H=D[y];var J=H.ds;var E=H.value;var B=H.type;w+=":"+J;if(J!="prn"&&J!="utf8"&&J!="ia5"){return"mixed"}if(J=="ia5"){if(B!="CN"){return"mixed"}else{if(!KJUR.lang.String.isMail(E)){return"mixed"}else{continue}}}if(B=="C"){if(J=="prn"){continue}else{return"mixed"}}z+=":"+J;if(I==null){I=J}else{if(I!==J){return"mixed"}}}if(I==null){return"prn"}else{return I}};this.getX500Name=function(x){var v=this.getX500NameArray(x);var w=this.dnarraytostr(v);return{array:v,str:w}};this.getX500NameArray=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getRDN(b(y,w[x])))}return v};this.getRDN=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getAttrTypeAndValue(b(y,w[x])))}return v};this.getAttrTypeAndValue=function(x){var v={type:null,value:null,ds:null};var w=o(x,0);var A=c(x,w[0],[],"06");var z=c(x,w[1],[]);var y=KJUR.asn1.ASN1Util.oidHexToInt(A);v.type=KJUR.asn1.x509.OID.oid2atype(y);v.ds=this.HEX2STAG[x.substr(w[1],2)];if(v.ds!="bmp"){v.value=hextoutf8(z)}else{v.value=ucs2hextoutf8(z)}return v};this.readCertPEM=function(v){this.readCertHex(s(v))};this.readCertHex=function(v){this.hex=v;this.getVersion();try{i(this.hex,0,[0,7],"a3");this.parseExt()}catch(w){}};this.getParam=function(){var v={};v.version=this.getVersion();v.serial={hex:this.getSerialNumberHex()};v.sigalg=this.getSignatureAlgorithmField();v.issuer=this.getIssuer();v.notbefore=this.getNotBefore();v.notafter=this.getNotAfter();v.subject=this.getSubject();v.sbjpubkey=hextopem(this.getPublicKeyHex(),"PUBLIC KEY");if(this.aExtInfo.length>0){v.ext=this.getExtParamArray()}v.sighex=this.getSignatureValueHex();return v};this.getExtParamArray=function(w){if(w==undefined){var y=e(this.hex,0,[0,"[3]"]);if(y!=-1){w=m(this.hex,0,[0,"[3]",0],"30")}}var v=[];var x=o(w,0);for(var z=0;z<x.length;z++){var B=b(w,x[z]);var A=this.getExtParam(B);if(A!=null){v.push(A)}}return v};this.getExtParam=function(w){var D={};var y=o(w,0);var z=y.length;if(z!=2&&z!=3){throw new Error("wrong number elements in Extension: "+z+" "+w)}var x=n(c(w,0,[0],"06"));var B=false;if(z==3&&a(w,0,[1])=="0101ff"){B=true}var C=a(w,0,[z-1,0]);var A=undefined;if(x=="2.5.29.14"){A=this.getExtSubjectKeyIdentifier(C,B)}else{if(x=="2.5.29.15"){A=this.getExtKeyUsage(C,B)}else{if(x=="2.5.29.17"){A=this.getExtSubjectAltName(C,B)}else{if(x=="2.5.29.18"){A=this.getExtIssuerAltName(C,B)}else{if(x=="2.5.29.19"){A=this.getExtBasicConstraints(C,B)}else{if(x=="2.5.29.31"){A=this.getExtCRLDistributionPoints(C,B)}else{if(x=="2.5.29.32"){A=this.getExtCertificatePolicies(C,B)}else{if(x=="2.5.29.35"){A=this.getExtAuthorityKeyIdentifier(C,B)}else{if(x=="2.5.29.37"){A=this.getExtExtKeyUsage(C,B)}else{if(x=="1.3.6.1.5.5.7.1.1"){A=this.getExtAuthorityInfoAccess(C,B)}else{if(x=="2.5.29.20"){A=this.getExtCRLNumber(C,B)}else{if(x=="2.5.29.21"){A=this.getExtCRLReason(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.2"){A=this.getExtOcspNonce(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.5"){A=this.getExtOcspNoCheck(C,B)}else{if(x=="1.2.840.113583.1.1.9.1"){A=this.getExtAdobeTimeStamp(C,B)}}}}}}}}}}}}}}}if(A!=undefined){return A}var v={extname:x,extn:C};if(B){v.critical=true}return v};this.findExt=function(w,x){for(var v=0;v<w.length;v++){if(w[v].extname==x){return w[v]}}return null};this.updateExtCDPFullURI=function(z,v){var y=this.findExt(z,"cRLDistributionPoints");if(y==null){return}if(y.array==undefined){return}var B=y.array;for(var x=0;x<B.length;x++){if(B[x].dpname==undefined){continue}if(B[x].dpname.full==undefined){continue}var C=B[x].dpname.full;for(var w=0;w<C.length;w++){var A=C[x];if(A.uri==undefined){continue}A.uri=v}}};this.updateExtAIAOCSP=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].ocsp!=undefined){v[x].ocsp=w}}};this.updateExtAIACAIssuer=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].caissuer!=undefined){v[x].caissuer=w}}};this.dnarraytostr=function(x){function v(y){return y.map(function(z){return w(z).replace(/\+/,"\\+")}).join("+")}function w(y){return y.type+"="+y.value}return"/"+x.map(function(y){return v(y).replace(/\//,"\\/")}).join("/")};this.getInfo=function(){var w=function(O){var N=JSON.stringify(O.array).replace(/[\[\]\{\}\"]/g,"");return N};var C=function(T){var R="";var N=T.array;for(var Q=0;Q<N.length;Q++){var S=N[Q];R+="    policy oid: "+S.policyoid+"\n";if(S.array===undefined){continue}for(var P=0;P<S.array.length;P++){var O=S.array[P];if(O.cps!==undefined){R+="    cps: "+O.cps+"\n"}}}return R};var F=function(R){var Q="";var N=R.array;for(var P=0;P<N.length;P++){var S=N[P];try{if(S.dpname.full[0].uri!==undefined){Q+="    "+S.dpname.full[0].uri+"\n"}}catch(O){}try{if(S.dname.full[0].dn.hex!==undefined){Q+="    "+X509.hex2dn(S.dpname.full[0].dn.hex)+"\n"}}catch(O){}}return Q};var D=function(R){var Q="";var N=R.array;for(var O=0;O<N.length;O++){var P=N[O];if(P.caissuer!==undefined){Q+="    caissuer: "+P.caissuer+"\n"}if(P.ocsp!==undefined){Q+="    ocsp: "+P.ocsp+"\n"}}return Q};var x=X509;var H,G,M;H="Basic Fields\n";H+="  serial number: "+this.getSerialNumberHex()+"\n";H+="  signature algorithm: "+this.getSignatureAlgorithmField()+"\n";H+="  issuer: "+this.getIssuerString()+"\n";H+="  notBefore: "+this.getNotBefore()+"\n";H+="  notAfter: "+this.getNotAfter()+"\n";H+="  subject: "+this.getSubjectString()+"\n";H+="  subject public key info: \n";G=this.getPublicKey();H+="    key algorithm: "+G.type+"\n";if(G.type==="RSA"){H+="    n="+hextoposhex(G.n.toString(16)).substr(0,16)+"...\n";H+="    e="+hextoposhex(G.e.toString(16))+"\n"}M=this.aExtInfo;if(M!==undefined&&M!==null){H+="X509v3 Extensions:\n";for(var J=0;J<M.length;J++){var L=M[J];var v=KJUR.asn1.x509.OID.oid2name(L.oid);if(v===""){v=L.oid}var I="";if(L.critical===true){I="CRITICAL"}H+="  "+v+" "+I+":\n";if(v==="basicConstraints"){var y=this.getExtBasicConstraints();if(y.cA===undefined){H+="    {}\n"}else{H+="    cA=true";if(y.pathLen!==undefined){H+=", pathLen="+y.pathLen}H+="\n"}}else{if(v==="keyUsage"){H+="    "+this.getExtKeyUsageString()+"\n"}else{if(v==="subjectKeyIdentifier"){H+="    "+this.getExtSubjectKeyIdentifier().kid.hex+"\n"}else{if(v==="authorityKeyIdentifier"){var z=this.getExtAuthorityKeyIdentifier();if(z.kid!==undefined){H+="    kid="+z.kid.hex+"\n"}}else{if(v==="extKeyUsage"){var K=this.getExtExtKeyUsage().array;H+="    "+K.join(", ")+"\n"}else{if(v==="subjectAltName"){var A=w(this.getExtSubjectAltName());H+="    "+A+"\n"}else{if(v==="cRLDistributionPoints"){var E=this.getExtCRLDistributionPoints();H+=F(E)}else{if(v==="authorityInfoAccess"){var B=this.getExtAuthorityInfoAccess();H+=D(B)}else{if(v==="certificatePolicies"){H+=C(this.getExtCertificatePolicies())}}}}}}}}}}}H+="signature algorithm: "+this.getSignatureAlgorithmName()+"\n";H+="signature: "+this.getSignatureValueHex().substr(0,16)+"...\n";return H};if(typeof r=="string"){if(r.indexOf("-----BEGIN")!=-1){this.readCertPEM(r)}else{if(KJUR.lang.String.isHex(r)){this.readCertHex(r)}}}}X509.hex2dn=function(e,b){if(b===undefined){b=0}var a=new X509();var c=ASN1HEX.getTLV(e,b);var d=a.getX500Name(e);return d.str};X509.hex2rdn=function(f,b){if(b===undefined){b=0}if(f.substr(b,2)!=="31"){throw new Error("malformed RDN")}var c=new Array();var d=ASN1HEX.getChildIdx(f,b);for(var e=0;e<d.length;e++){c.push(X509.hex2attrTypeValue(f,d[e]))}c=c.map(function(a){return a.replace("+","\\+")});return c.join("+")};X509.hex2attrTypeValue=function(d,i){var j=ASN1HEX;var h=j.getV;if(i===undefined){i=0}if(d.substr(i,2)!=="30"){throw new Error("malformed attribute type and value")}var g=j.getChildIdx(d,i);if(g.length!==2||d.substr(g[0],2)!=="06"){"malformed attribute type and value"}var b=h(d,g[0]);var f=KJUR.asn1.ASN1Util.oidHexToInt(b);var e=KJUR.asn1.x509.OID.oid2atype(f);var a=h(d,g[1]);var c=hextorstr(a);return e+"="+c};X509.getPublicKeyFromCertHex=function(b){var a=new X509();a.readCertHex(b);return a.getPublicKey()};X509.getPublicKeyFromCertPEM=function(b){var a=new X509();a.readCertPEM(b);return a.getPublicKey()};X509.getPublicKeyInfoPropOfCertPEM=function(c){var e=ASN1HEX;var g=e.getVbyList;var b={};var a,f,d;b.algparam=null;a=new X509();a.readCertPEM(c);f=a.getPublicKeyHex();b.keyhex=g(f,0,[1],"03").substr(2);b.algoid=g(f,0,[0,0],"06");if(b.algoid==="2a8648ce3d0201"){b.algparam=g(f,0,[0,1],"06")}return b};X509.KEYUSAGE_NAME=["digitalSignature","nonRepudiation","keyEncipherment","dataEncipherment","keyAgreement","keyCertSign","cRLSign","encipherOnly","decipherOnly"];
-var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(sn)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
+var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(o)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWS=function(){var b=KJUR,a=b.jws.JWS,c=a.isSafeJSONString;this.parseJWS=function(g,j){if((this.parsedJWS!==undefined)&&(j||(this.parsedJWS.sigvalH!==undefined))){return}var i=g.match(/^([^.]+)\.([^.]+)\.([^.]+)$/);if(i==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}var k=i[1];var e=i[2];var l=i[3];var n=k+"."+e;this.parsedJWS={};this.parsedJWS.headB64U=k;this.parsedJWS.payloadB64U=e;this.parsedJWS.sigvalB64U=l;this.parsedJWS.si=n;if(!j){var h=b64utohex(l);var f=parseBigInt(h,16);this.parsedJWS.sigvalH=h;this.parsedJWS.sigvalBI=f}var d=b64utoutf8(k);var m=b64utoutf8(e);this.parsedJWS.headS=d;this.parsedJWS.payloadS=m;if(!c(d,this.parsedJWS,"headP")){throw"malformed JSON string for JWS Head: "+d}}};KJUR.jws.JWS.sign=function(j,w,z,A,a){var x=KJUR,n=x.jws,r=n.JWS,h=r.readSafeJSONString,q=r.isSafeJSONString,d=x.crypto,l=d.ECDSA,p=d.Mac,c=d.Signature,u=JSON;var t,k,o;if(typeof w!="string"&&typeof w!="object"){throw"spHeader must be JSON string or object: "+w}if(typeof w=="object"){k=w;t=u.stringify(k)}if(typeof w=="string"){t=w;if(!q(t)){throw"JWS Head is not safe JSON string: "+t}k=h(t)}o=z;if(typeof z=="object"){o=u.stringify(z)}if((j==""||j==null)&&k.alg!==undefined){j=k.alg}if((j!=""&&j!=null)&&k.alg===undefined){k.alg=j;t=u.stringify(k)}if(j!==k.alg){throw"alg and sHeader.alg doesn't match: "+j+"!="+k.alg}var s=null;if(r.jwsalg2sigalg[j]===undefined){throw"unsupported alg name: "+j}else{s=r.jwsalg2sigalg[j]}var e=utf8tob64u(t);var m=utf8tob64u(o);var b=e+"."+m;var y="";if(s.substr(0,4)=="Hmac"){if(A===undefined){throw"mac key shall be specified for HS* alg"}var i=new p({alg:s,prov:"cryptojs",pass:A});i.updateString(b);y=i.doFinal()}else{if(s.indexOf("withECDSA")!=-1){var f=new c({alg:s});f.init(A,a);f.updateString(b);var g=f.sign();y=KJUR.crypto.ECDSA.asn1SigToConcatSig(g)}else{if(s!="none"){var f=new c({alg:s});f.init(A,a);f.updateString(b);y=f.sign()}}}var v=hextob64u(y);return b+"."+v};KJUR.jws.JWS.verify=function(w,B,n){var x=KJUR,q=x.jws,t=q.JWS,i=t.readSafeJSONString,e=x.crypto,p=e.ECDSA,s=e.Mac,d=e.Signature,m;if(typeof RSAKey!==undefined){m=RSAKey}var y=w.split(".");if(y.length!==3){return false}var f=y[0];var r=y[1];var c=f+"."+r;var A=b64utohex(y[2]);var l=i(b64utoutf8(y[0]));var k=null;var z=null;if(l.alg===undefined){throw"algorithm not specified in header"}else{k=l.alg;z=k.substr(0,2)}if(n!=null&&Object.prototype.toString.call(n)==="[object Array]"&&n.length>0){var b=":"+n.join(":")+":";if(b.indexOf(":"+k+":")==-1){throw"algorithm '"+k+"' not accepted in the list"}}if(k!="none"&&B===null){throw"key shall be specified to verify."}if(typeof B=="string"&&B.indexOf("-----BEGIN ")!=-1){B=KEYUTIL.getKey(B)}if(z=="RS"||z=="PS"){if(!(B instanceof m)){throw"key shall be a RSAKey obj for RS* and PS* algs"}}if(z=="ES"){if(!(B instanceof p)){throw"key shall be a ECDSA obj for ES* algs"}}if(k=="none"){}var u=null;if(t.jwsalg2sigalg[l.alg]===undefined){throw"unsupported alg name: "+k}else{u=t.jwsalg2sigalg[k]}if(u=="none"){throw"not supported"}else{if(u.substr(0,4)=="Hmac"){var o=null;if(B===undefined){throw"hexadecimal key shall be specified for HMAC"}var j=new s({alg:u,pass:B});j.updateString(c);o=j.doFinal();return A==o}else{if(u.indexOf("withECDSA")!=-1){var h=null;try{h=p.concatSigToASN1Sig(A)}catch(v){return false}var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(h)}else{var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(A)}}}};KJUR.jws.JWS.parse=function(g){var c=g.split(".");var b={};var f,e,d;if(c.length!=2&&c.length!=3){throw"malformed sJWS: wrong number of '.' splitted elements"}f=c[0];e=c[1];if(c.length==3){d=c[2]}b.headerObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(f));b.payloadObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(e));b.headerPP=JSON.stringify(b.headerObj,null,"  ");if(b.payloadObj==null){b.payloadPP=b64utoutf8(e)}else{b.payloadPP=JSON.stringify(b.payloadObj,null,"  ")}if(d!==undefined){b.sigHex=b64utohex(d)}return b};KJUR.jws.JWS.verifyJWT=function(e,l,r){var d=KJUR,j=d.jws,o=j.JWS,n=o.readSafeJSONString,p=o.inArray,f=o.includedArray;var k=e.split(".");var c=k[0];var i=k[1];var q=c+"."+i;var m=b64utohex(k[2]);var h=n(b64utoutf8(c));var g=n(b64utoutf8(i));if(h.alg===undefined){return false}if(r.alg===undefined){throw"acceptField.alg shall be specified"}if(!p(h.alg,r.alg)){return false}if(g.iss!==undefined&&typeof r.iss==="object"){if(!p(g.iss,r.iss)){return false}}if(g.sub!==undefined&&typeof r.sub==="object"){if(!p(g.sub,r.sub)){return false}}if(g.aud!==undefined&&typeof r.aud==="object"){if(typeof g.aud=="string"){if(!p(g.aud,r.aud)){return false}}else{if(typeof g.aud=="object"){if(!f(g.aud,r.aud)){return false}}}}var b=j.IntDate.getNow();if(r.verifyAt!==undefined&&typeof r.verifyAt==="number"){b=r.verifyAt}if(r.gracePeriod===undefined||typeof r.gracePeriod!=="number"){r.gracePeriod=0}if(g.exp!==undefined&&typeof g.exp=="number"){if(g.exp+r.gracePeriod<b){return false}}if(g.nbf!==undefined&&typeof g.nbf=="number"){if(b<g.nbf-r.gracePeriod){return false}}if(g.iat!==undefined&&typeof g.iat=="number"){if(b<g.iat-r.gracePeriod){return false}}if(g.jti!==undefined&&r.jti!==undefined){if(g.jti!==r.jti){return false}}if(!o.verify(e,l,r.alg)){return false}return true};KJUR.jws.JWS.includedArray=function(b,a){var c=KJUR.jws.JWS.inArray;if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var d=0;d<b.length;d++){if(!c(b[d],a)){return false}}return true};KJUR.jws.JWS.inArray=function(d,b){if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var c=0;c<b.length;c++){if(b[c]==d){return true}}return false};KJUR.jws.JWS.jwsalg2sigalg={HS256:"HmacSHA256",HS384:"HmacSHA384",HS512:"HmacSHA512",RS256:"SHA256withRSA",RS384:"SHA384withRSA",RS512:"SHA512withRSA",ES256:"SHA256withECDSA",ES384:"SHA384withECDSA",ES512:"SHA512withECDSA",PS256:"SHA256withRSAandMGF1",PS384:"SHA384withRSAandMGF1",PS512:"SHA512withRSAandMGF1",none:"none",};KJUR.jws.JWS.isSafeJSONString=function(c,b,d){var e=null;try{e=jsonParse(c);if(typeof e!="object"){return 0}if(e.constructor===Array){return 0}if(b){b[d]=e}return 1}catch(a){return 0}};KJUR.jws.JWS.readSafeJSONString=function(b){var c=null;try{c=jsonParse(b);if(typeof c!="object"){return null}if(c.constructor===Array){return null}return c}catch(a){return null}};KJUR.jws.JWS.getEncodedSignatureValueFromJWS=function(b){var a=b.match(/^[^.]+\.[^.]+\.([^.]+)$/);if(a==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}return a[1]};KJUR.jws.JWS.getJWKthumbprint=function(d){if(d.kty!=="RSA"&&d.kty!=="EC"&&d.kty!=="oct"){throw"unsupported algorithm for JWK Thumprint"}var a="{";if(d.kty==="RSA"){if(typeof d.n!="string"||typeof d.e!="string"){throw"wrong n and e value for RSA key"}a+='"e":"'+d.e+'",';a+='"kty":"'+d.kty+'",';a+='"n":"'+d.n+'"}'}else{if(d.kty==="EC"){if(typeof d.crv!="string"||typeof d.x!="string"||typeof d.y!="string"){throw"wrong crv, x and y value for EC key"}a+='"crv":"'+d.crv+'",';a+='"kty":"'+d.kty+'",';a+='"x":"'+d.x+'",';a+='"y":"'+d.y+'"}'}else{if(d.kty==="oct"){if(typeof d.k!="string"){throw"wrong k value for oct(symmetric) key"}a+='"kty":"'+d.kty+'",';a+='"k":"'+d.k+'"}'}}}var b=rstrtohex(a);var c=KJUR.crypto.Util.hashHex(b,"sha256");var e=hextob64u(c);return e};KJUR.jws.IntDate={};KJUR.jws.IntDate.get=function(c){var b=KJUR.jws.IntDate,d=b.getNow,a=b.getZulu;if(c=="now"){return d()}else{if(c=="now + 1hour"){return d()+60*60}else{if(c=="now + 1day"){return d()+60*60*24}else{if(c=="now + 1month"){return d()+60*60*24*30}else{if(c=="now + 1year"){return d()+60*60*24*365}else{if(c.match(/Z$/)){return a(c)}else{if(c.match(/^[0-9]+$/)){return parseInt(c)}}}}}}}throw"unsupported format: "+c};KJUR.jws.IntDate.getZulu=function(a){return zulutosec(a)};KJUR.jws.IntDate.getNow=function(){var a=~~(new Date()/1000);return a};KJUR.jws.IntDate.intDate2UTCString=function(a){var b=new Date(a*1000);return b.toUTCString()};KJUR.jws.IntDate.intDate2Zulu=function(e){var i=new Date(e*1000),h=("0000"+i.getUTCFullYear()).slice(-4),g=("00"+(i.getUTCMonth()+1)).slice(-2),b=("00"+i.getUTCDate()).slice(-2),a=("00"+i.getUTCHours()).slice(-2),c=("00"+i.getUTCMinutes()).slice(-2),f=("00"+i.getUTCSeconds()).slice(-2);return h+g+b+a+c+f+"Z"};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWSJS=function(){var c=KJUR,b=c.jws,a=b.JWS,d=a.readSafeJSONString;this.aHeader=[];this.sPayload="";this.aSignature=[];this.init=function(){this.aHeader=[];this.sPayload=undefined;this.aSignature=[]};this.initWithJWS=function(f){this.init();var e=f.split(".");if(e.length!=3){throw"malformed input JWS"}this.aHeader.push(e[0]);this.sPayload=e[1];this.aSignature.push(e[2])};this.addSignature=function(e,h,m,k){if(this.sPayload===undefined||this.sPayload===null){throw"there's no JSON-JS signature to add."}var l=this.aHeader.length;if(this.aHeader.length!=this.aSignature.length){throw"aHeader.length != aSignature.length"}try{var f=KJUR.jws.JWS.sign(e,h,this.sPayload,m,k);var j=f.split(".");var n=j[0];var g=j[2];this.aHeader.push(j[0]);this.aSignature.push(j[2])}catch(i){if(this.aHeader.length>l){this.aHeader.pop()}if(this.aSignature.length>l){this.aSignature.pop()}throw"addSignature failed: "+i}};this.verifyAll=function(h){if(this.aHeader.length!==h.length||this.aSignature.length!==h.length){return false}for(var g=0;g<h.length;g++){var f=h[g];if(f.length!==2){return false}var e=this.verifyNth(g,f[0],f[1]);if(e===false){return false}}return true};this.verifyNth=function(f,j,g){if(this.aHeader.length<=f||this.aSignature.length<=f){return false}var h=this.aHeader[f];var k=this.aSignature[f];var l=h+"."+this.sPayload+"."+k;var e=false;try{e=a.verify(l,j,g)}catch(i){return false}return e};this.readJWSJS=function(g){if(typeof g==="string"){var f=d(g);if(f==null){throw"argument is not safe JSON object string"}this.aHeader=f.headers;this.sPayload=f.payload;this.aSignature=f.signatures}else{try{if(g.headers.length>0){this.aHeader=g.headers}else{throw"malformed header"}if(typeof g.payload==="string"){this.sPayload=g.payload}else{throw"malformed signatures"}if(g.signatures.length>0){this.aSignature=g.signatures}else{throw"malformed signatures"}}catch(e){throw"malformed JWS-JS JSON object: "+e}}};this.getJSON=function(){return{headers:this.aHeader,payload:this.sPayload,signatures:this.aSignature}};this.isEmpty=function(){if(this.aHeader.length==0){return 1}return 0}};
diff --git a/npm/lib/jsrsasign-jwths-min.js b/npm/lib/jsrsasign-jwths-min.js
index 581817b5..bacf1b9a 100644
--- a/npm/lib/jsrsasign-jwths-min.js
+++ b/npm/lib/jsrsasign-jwths-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(jwths) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(jwths) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
diff --git a/npm/lib/jsrsasign-rsa-min.js b/npm/lib/jsrsasign-rsa-min.js
index f2a16f0b..a1ac8784 100644
--- a/npm/lib/jsrsasign-rsa-min.js
+++ b/npm/lib/jsrsasign-rsa-min.js
@@ -1,5 +1,5 @@
 /*
- * jsrsasign(rsa) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(rsa) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
diff --git a/npm/lib/jsrsasign.js b/npm/lib/jsrsasign.js
index e1a860f5..48b2ffd2 100755
--- a/npm/lib/jsrsasign.js
+++ b/npm/lib/jsrsasign.js
@@ -4,7 +4,7 @@ navigator.userAgent = false;
 
 var window = {};
 /*
- * jsrsasign(all) 10.5.5 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
+ * jsrsasign(all) 10.5.6 (2022-02-17) (c) 2010-2021 Kenji Urushima | kjur.github.io/jsrsasign/license
  */
 
 /*! CryptoJS v3.1.2 core-fix.js
@@ -239,7 +239,7 @@ var KEYUTIL=function(){var d=function(p,r,q){return k(CryptoJS.AES,p,r,q)};var e
 RSAKey.getPosArrayOfChildrenFromHex=function(a){return ASN1HEX.getChildIdx(a,0)};RSAKey.getHexValueArrayOfChildrenFromHex=function(f){var n=ASN1HEX;var i=n.getV;var k=RSAKey.getPosArrayOfChildrenFromHex(f);var e=i(f,k[0]);var j=i(f,k[1]);var b=i(f,k[2]);var c=i(f,k[3]);var h=i(f,k[4]);var g=i(f,k[5]);var m=i(f,k[6]);var l=i(f,k[7]);var d=i(f,k[8]);var k=new Array();k.push(e,j,b,c,h,g,m,l,d);return k};RSAKey.prototype.readPrivateKeyFromPEMString=function(d){var c=pemtohex(d);var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS5PrvKeyHex=function(c){var b=RSAKey.getHexValueArrayOfChildrenFromHex(c);this.setPrivateEx(b[1],b[2],b[3],b[4],b[5],b[6],b[7],b[8])};RSAKey.prototype.readPKCS8PrvKeyHex=function(e){var c,i,k,b,a,f,d,j;var m=ASN1HEX;var l=m.getVbyListEx;if(m.isASN1HEX(e)===false){throw new Error("not ASN.1 hex string")}try{c=l(e,0,[2,0,1],"02");i=l(e,0,[2,0,2],"02");k=l(e,0,[2,0,3],"02");b=l(e,0,[2,0,4],"02");a=l(e,0,[2,0,5],"02");f=l(e,0,[2,0,6],"02");d=l(e,0,[2,0,7],"02");j=l(e,0,[2,0,8],"02")}catch(g){throw new Error("malformed PKCS#8 plain RSA private key")}this.setPrivateEx(c,i,k,b,a,f,d,j)};RSAKey.prototype.readPKCS5PubKeyHex=function(c){var e=ASN1HEX;var b=e.getV;if(e.isASN1HEX(c)===false){throw new Error("keyHex is not ASN.1 hex string")}var a=e.getChildIdx(c,0);if(a.length!==2||c.substr(a[0],2)!=="02"||c.substr(a[1],2)!=="02"){throw new Error("wrong hex for PKCS#5 public key")}var f=b(c,a[0]);var d=b(c,a[1]);this.setPublic(f,d)};RSAKey.prototype.readPKCS8PubKeyHex=function(b){var c=ASN1HEX;if(c.isASN1HEX(b)===false){throw new Error("not ASN.1 hex string")}if(c.getTLVbyListEx(b,0,[0,0])!=="06092a864886f70d010101"){throw new Error("not PKCS8 RSA public key")}var a=c.getTLVbyListEx(b,0,[1,0]);this.readPKCS5PubKeyHex(a)};RSAKey.prototype.readCertPubKeyHex=function(b,d){var a,c;a=new X509();a.readCertHex(b);c=a.getPublicKeyHex();this.readPKCS8PubKeyHex(c)};
 var _RE_HEXDECONLY=new RegExp("[^0-9a-f]","gi");function _rsasign_getHexPaddedDigestInfoForString(d,e,a){var b=function(f){return KJUR.crypto.Util.hashString(f,a)};var c=b(d);return KJUR.crypto.Util.getPaddedDigestInfoHex(c,a,e)}function _zeroPaddingOfSignature(e,d){var c="";var a=d/4-e.length;for(var b=0;b<a;b++){c=c+"0"}return c+e}RSAKey.prototype.sign=function(d,a){var b=function(e){return KJUR.crypto.Util.hashString(e,a)};var c=b(d);return this.signWithMessageHash(c,a)};RSAKey.prototype.signWithMessageHash=function(e,c){var f=KJUR.crypto.Util.getPaddedDigestInfoHex(e,c,this.n.bitLength());var b=parseBigInt(f,16);var d=this.doPrivate(b);var a=d.toString(16);return _zeroPaddingOfSignature(a,this.n.bitLength())};function pss_mgf1_str(c,a,e){var b="",d=0;while(b.length<a){b+=hextorstr(e(rstrtohex(c+String.fromCharCode.apply(String,[(d&4278190080)>>24,(d&16711680)>>16,(d&65280)>>8,d&255]))));d+=1}return b}RSAKey.prototype.signPSS=function(e,a,d){var c=function(f){return KJUR.crypto.Util.hashHex(f,a)};var b=c(rstrtohex(e));if(d===undefined){d=-1}return this.signWithMessageHashPSS(b,a,d)};RSAKey.prototype.signWithMessageHashPSS=function(l,a,k){var b=hextorstr(l);var g=b.length;var m=this.n.bitLength()-1;var c=Math.ceil(m/8);var d;var o=function(i){return KJUR.crypto.Util.hashHex(i,a)};if(k===-1||k===undefined){k=g}else{if(k===-2){k=c-g-2}else{if(k<-2){throw new Error("invalid salt length")}}}if(c<(g+k+2)){throw new Error("data too long")}var f="";if(k>0){f=new Array(k);new SecureRandom().nextBytes(f);f=String.fromCharCode.apply(String,f)}var n=hextorstr(o(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+b+f)));var j=[];for(d=0;d<c-k-g-2;d+=1){j[d]=0}var e=String.fromCharCode.apply(String,j)+"\x01"+f;var h=pss_mgf1_str(n,e.length,o);var q=[];for(d=0;d<e.length;d+=1){q[d]=e.charCodeAt(d)^h.charCodeAt(d)}var p=(65280>>(8*c-m))&255;q[0]&=~p;for(d=0;d<g;d++){q.push(n.charCodeAt(d))}q.push(188);return _zeroPaddingOfSignature(this.doPrivate(new BigInteger(q)).toString(16),this.n.bitLength())};function _rsasign_getDecryptSignatureBI(a,d,c){var b=new RSAKey();b.setPublic(d,c);var e=b.doPublic(a);return e}function _rsasign_getHexDigestInfoFromSig(a,c,b){var e=_rsasign_getDecryptSignatureBI(a,c,b);var d=e.toString(16).replace(/^1f+00/,"");return d}function _rsasign_getAlgNameAndHashFromHexDisgestInfo(f){for(var e in KJUR.crypto.Util.DIGESTINFOHEAD){var d=KJUR.crypto.Util.DIGESTINFOHEAD[e];var b=d.length;if(f.substring(0,b)==d){var c=[e,f.substring(b)];return c}}return[]}RSAKey.prototype.verify=function(f,l){l=l.toLowerCase();if(l.match(/^[0-9a-f]+$/)==null){return false}var b=parseBigInt(l,16);var k=this.n.bitLength();if(b.bitLength()>k){return false}var j=this.doPublic(b);var i=j.toString(16);if(i.length+3!=k/4){return false}var e=i.replace(/^1f+00/,"");var g=_rsasign_getAlgNameAndHashFromHexDisgestInfo(e);if(g.length==0){return false}var d=g[0];var h=g[1];var a=function(m){return KJUR.crypto.Util.hashString(m,d)};var c=a(f);return(h==c)};RSAKey.prototype.verifyWithMessageHash=function(e,a){if(a.length!=Math.ceil(this.n.bitLength()/4)){return false}var b=parseBigInt(a,16);if(b.bitLength()>this.n.bitLength()){return 0}var h=this.doPublic(b);var g=h.toString(16).replace(/^1f+00/,"");var c=_rsasign_getAlgNameAndHashFromHexDisgestInfo(g);if(c.length==0){return false}var d=c[0];var f=c[1];return(f==e)};RSAKey.prototype.verifyPSS=function(c,b,a,f){var e=function(g){return KJUR.crypto.Util.hashHex(g,a)};var d=e(rstrtohex(c));if(f===undefined){f=-1}return this.verifyWithMessageHashPSS(d,b,a,f)};RSAKey.prototype.verifyWithMessageHashPSS=function(f,s,l,c){if(s.length!=Math.ceil(this.n.bitLength()/4)){return false}var k=new BigInteger(s,16);var r=function(i){return KJUR.crypto.Util.hashHex(i,l)};var j=hextorstr(f);var h=j.length;var g=this.n.bitLength()-1;var m=Math.ceil(g/8);var q;if(c===-1||c===undefined){c=h}else{if(c===-2){c=m-h-2}else{if(c<-2){throw new Error("invalid salt length")}}}if(m<(h+c+2)){throw new Error("data too long")}var a=this.doPublic(k).toByteArray();for(q=0;q<a.length;q+=1){a[q]&=255}while(a.length<m){a.unshift(0)}if(a[m-1]!==188){throw new Error("encoded message does not end in 0xbc")}a=String.fromCharCode.apply(String,a);var d=a.substr(0,m-h-1);var e=a.substr(d.length,h);var p=(65280>>(8*m-g))&255;if((d.charCodeAt(0)&p)!==0){throw new Error("bits beyond keysize not zero")}var n=pss_mgf1_str(e,d.length,r);var o=[];for(q=0;q<d.length;q+=1){o[q]=d.charCodeAt(q)^n.charCodeAt(q)}o[0]&=~p;var b=m-h-c-2;for(q=0;q<b;q+=1){if(o[q]!==0){throw new Error("leftmost octets not zero")}}if(o[b]!==1){throw new Error("0x01 marker not found")}return e===hextorstr(r(rstrtohex("\x00\x00\x00\x00\x00\x00\x00\x00"+j+String.fromCharCode.apply(String,o.slice(-c)))))};RSAKey.SALT_LEN_HLEN=-1;RSAKey.SALT_LEN_MAX=-2;RSAKey.SALT_LEN_RECOVER=-2;
 function X509(r){var k=ASN1HEX,o=k.getChildIdx,h=k.getV,u=k.dump,g=k.parse,b=k.getTLV,c=k.getVbyList,l=k.getVbyListEx,a=k.getTLVbyList,m=k.getTLVbyListEx,i=k.getIdxbyList,e=k.getIdxbyListEx,j=k.getVidx,t=k.getInt,q=k.oidname,n=k.hextooidstr,d=X509,s=pemtohex,f;try{f=KJUR.asn1.x509.AlgorithmIdentifier.PSSNAME2ASN1TLV}catch(p){}this.HEX2STAG={"0c":"utf8","13":"prn","16":"ia5","1a":"vis","1e":"bmp"};this.hex=null;this.version=0;this.foffset=0;this.aExtInfo=null;this.getVersion=function(){if(this.hex===null||this.version!==0){return this.version}var w=a(this.hex,0,[0,0]);if(w.substr(0,2)=="a0"){var x=a(w,0,[0]);var v=t(x,0);if(v<0||2<v){throw new Error("malformed version field")}this.version=v+1;return this.version}else{this.version=1;this.foffset=-1;return 1}};this.getSerialNumberHex=function(){return l(this.hex,0,[0,0],"02")};this.getSignatureAlgorithmField=function(){var v=m(this.hex,0,[0,1]);return this.getAlgorithmIdentifierName(v)};this.getAlgorithmIdentifierName=function(v){for(var w in f){if(v===f[w]){return w}}return q(l(v,0,[0],"06"))};this.getIssuer=function(){return this.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return a(this.hex,0,[0,3+this.foffset],"30")};this.getIssuerString=function(){var v=this.getIssuer();return v.str};this.getSubject=function(){return this.getX500Name(this.getSubjectHex())};this.getSubjectHex=function(){return a(this.hex,0,[0,5+this.foffset],"30")};this.getSubjectString=function(){var v=this.getSubject();return v.str};this.getNotBefore=function(){var v=c(this.hex,0,[0,4+this.foffset,0]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getNotAfter=function(){var v=c(this.hex,0,[0,4+this.foffset,1]);v=v.replace(/(..)/g,"%$1");v=decodeURIComponent(v);return v};this.getPublicKeyHex=function(){return k.getTLVbyList(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyIdx=function(){return i(this.hex,0,[0,6+this.foffset],"30")};this.getPublicKeyContentIdx=function(){var v=this.getPublicKeyIdx();return i(this.hex,v,[1,0],"30")};this.getPublicKey=function(){return KEYUTIL.getKey(this.getPublicKeyHex(),null,"pkcs8pub")};this.getSignatureAlgorithmName=function(){var v=a(this.hex,0,[1],"30");return this.getAlgorithmIdentifierName(v)};this.getSignatureValueHex=function(){return c(this.hex,0,[2],"03",true)};this.verifySignature=function(x){var y=this.getSignatureAlgorithmField();var v=this.getSignatureValueHex();var w=a(this.hex,0,[0],"30");var z=new KJUR.crypto.Signature({alg:y});z.init(x);z.updateHex(w);return z.verify(v)};this.parseExt=function(E){var x,v,z;if(E===undefined){z=this.hex;if(this.version!==3){return -1}x=i(z,0,[0,7,0],"30");v=o(z,x)}else{z=pemtohex(E);var A=i(z,0,[0,3,0,0],"06");if(h(z,A)!="2a864886f70d01090e"){this.aExtInfo=new Array();return}x=i(z,0,[0,3,0,1,0],"30");v=o(z,x);this.hex=z}this.aExtInfo=new Array();for(var y=0;y<v.length;y++){var C={};C.critical=false;var B=o(z,v[y]);var w=0;if(B.length===3){C.critical=true;w=1}C.oid=k.hextooidstr(c(z,v[y],[0],"06"));var D=i(z,v[y],[1+w]);C.vidx=j(z,D);this.aExtInfo.push(C)}};this.getExtInfo=function(x){var v=this.aExtInfo;var y=x;if(!x.match(/^[0-9.]+$/)){y=KJUR.asn1.x509.OID.name2oid(x)}if(y===""){return undefined}for(var w=0;w<v.length;w++){if(v[w].oid===y){return v[w]}}return undefined};this.getExtBasicConstraints=function(w,A){if(w===undefined&&A===undefined){var y=this.getExtInfo("basicConstraints");if(y===undefined){return undefined}w=b(this.hex,y.vidx);A=y.critical}var v={extname:"basicConstraints"};if(A){v.critical=true}if(w==="3000"){return v}if(w==="30030101ff"){v.cA=true;return v}if(w.substr(0,12)==="30060101ff02"){var z=h(w,10);var x=parseInt(z,16);v.cA=true;v.pathLen=x;return v}throw new Error("hExtV parse error: "+w)};this.getExtKeyUsage=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"keyUsage"};if(y){v.critical=true}v.names=this.getExtKeyUsageString(w).split(",");return v};this.getExtKeyUsageBin=function(w){if(w===undefined){var x=this.getExtInfo("keyUsage");if(x===undefined){return""}w=b(this.hex,x.vidx)}if(w.length!=8&&w.length!=10){throw new Error("malformed key usage value: "+w)}var v="000000000000000"+parseInt(w.substr(6),16).toString(2);if(w.length==8){v=v.slice(-8)}if(w.length==10){v=v.slice(-16)}v=v.replace(/0+$/,"");if(v==""){v="0"}return v};this.getExtKeyUsageString=function(x){var y=this.getExtKeyUsageBin(x);var v=new Array();for(var w=0;w<y.length;w++){if(y.substr(w,1)=="1"){v.push(X509.KEYUSAGE_NAME[w])}}return v.join(",")};this.getExtSubjectKeyIdentifier=function(x,z){if(x===undefined&&z===undefined){var y=this.getExtInfo("subjectKeyIdentifier");if(y===undefined){return undefined}x=b(this.hex,y.vidx);z=y.critical}var v={extname:"subjectKeyIdentifier"};if(z){v.critical=true}var w=h(x,0);v.kid={hex:w};return v};this.getExtAuthorityKeyIdentifier=function(B,z){if(B===undefined&&z===undefined){var v=this.getExtInfo("authorityKeyIdentifier");if(v===undefined){return undefined}B=b(this.hex,v.vidx);z=v.critical}var C={extname:"authorityKeyIdentifier"};if(z){C.critical=true}var A=o(B,0);for(var w=0;w<A.length;w++){var D=B.substr(A[w],2);if(D==="80"){C.kid={hex:h(B,A[w])}}if(D==="a1"){var y=b(B,A[w]);var x=this.getGeneralNames(y);C.issuer=x[0]["dn"]}if(D==="82"){C.sn={hex:h(B,A[w])}}}return C};this.getExtExtKeyUsage=function(y,A){if(y===undefined&&A===undefined){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return undefined}y=b(this.hex,z.vidx);A=z.critical}var v={extname:"extKeyUsage",array:[]};if(A){v.critical=true}var w=o(y,0);for(var x=0;x<w.length;x++){v.array.push(q(h(y,w[x])))}return v};this.getExtExtKeyUsageName=function(){var z=this.getExtInfo("extKeyUsage");if(z===undefined){return z}var v=new Array();var y=b(this.hex,z.vidx);if(y===""){return v}var w=o(y,0);for(var x=0;x<w.length;x++){v.push(q(h(y,w[x])))}return v};this.getExtSubjectAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("subjectAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"subjectAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getExtIssuerAltName=function(w,y){if(w===undefined&&y===undefined){var x=this.getExtInfo("issuerAltName");if(x===undefined){return undefined}w=b(this.hex,x.vidx);y=x.critical}var v={extname:"issuerAltName",array:[]};if(y){v.critical=true}v.array=this.getGeneralNames(w);return v};this.getGeneralNames=function(z){var x=o(z,0);var v=[];for(var y=0;y<x.length;y++){var w=this.getGeneralName(b(z,x[y]));if(w!==undefined){v.push(w)}}return v};this.getGeneralName=function(w){var v=w.substr(0,2);var y=h(w,0);var x=hextorstr(y);if(v=="81"){return{rfc822:x}}if(v=="82"){return{dns:x}}if(v=="86"){return{uri:x}}if(v=="87"){return{ip:hextoip(y)}}if(v=="a4"){return{dn:this.getX500Name(y)}}if(v=="a0"){return{other:this.getOtherName(w)}}return undefined};this.getExtSubjectAltName2=function(){var z,C,B;var A=this.getExtInfo("subjectAltName");if(A===undefined){return A}var v=new Array();var y=b(this.hex,A.vidx);var w=o(y,0);for(var x=0;x<w.length;x++){B=y.substr(w[x],2);z=h(y,w[x]);if(B==="81"){C=hextoutf8(z);v.push(["MAIL",C])}if(B==="82"){C=hextoutf8(z);v.push(["DNS",C])}if(B==="84"){C=X509.hex2dn(z,0);v.push(["DN",C])}if(B==="86"){C=hextoutf8(z);v.push(["URI",C])}if(B==="87"){C=hextoip(z);v.push(["IP",C])}}return v};this.getExtCRLDistributionPoints=function(z,B){if(z===undefined&&B===undefined){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return undefined}z=b(this.hex,A.vidx);B=A.critical}var w={extname:"cRLDistributionPoints",array:[]};if(B){w.critical=true}var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);w.array.push(this.getDistributionPoint(v))}return w};this.getDistributionPoint=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.dpname=this.getDistributionPointName(v)}}return x};this.getDistributionPointName=function(A){var x={};var y=o(A,0);for(var z=0;z<y.length;z++){var w=A.substr(y[z],2);var v=b(A,y[z]);if(w=="a0"){x.full=this.getGeneralNames(v)}}return x};this.getExtCRLDistributionPointsURI=function(){var A=this.getExtInfo("cRLDistributionPoints");if(A===undefined){return A}var v=new Array();var w=o(this.hex,A.vidx);for(var y=0;y<w.length;y++){try{var B=c(this.hex,w[y],[0,0,0],"86");var z=hextoutf8(B);v.push(z)}catch(x){}}return v};this.getExtAIAInfo=function(){var z=this.getExtInfo("authorityInfoAccess");if(z===undefined){return z}var v={ocsp:[],caissuer:[]};var w=o(this.hex,z.vidx);for(var x=0;x<w.length;x++){var A=c(this.hex,w[x],[0],"06");var y=c(this.hex,w[x],[1],"86");if(A==="2b06010505073001"){v.ocsp.push(hextoutf8(y))}if(A==="2b06010505073002"){v.caissuer.push(hextoutf8(y))}}return v};this.getExtAuthorityInfoAccess=function(C,A){if(C===undefined&&A===undefined){var v=this.getExtInfo("authorityInfoAccess");if(v===undefined){return undefined}C=b(this.hex,v.vidx);A=v.critical}var D={extname:"authorityInfoAccess",array:[]};if(A){D.critical=true}var B=o(C,0);for(var w=0;w<B.length;w++){var z=l(C,B[w],[0],"06");var x=c(C,B[w],[1],"86");var y=hextoutf8(x);if(z=="2b06010505073001"){D.array.push({ocsp:y})}else{if(z=="2b06010505073002"){D.array.push({caissuer:y})}else{throw new Error("unknown method: "+z)}}}return D};this.getExtCertificatePolicies=function(z,C){if(z===undefined&&C===undefined){var B=this.getExtInfo("certificatePolicies");if(B===undefined){return undefined}z=b(this.hex,B.vidx);C=B.critical}var v={extname:"certificatePolicies",array:[]};if(C){v.critical=true}var w=o(z,0);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyInformation(A);v.array.push(y)}return v};this.getPolicyInformation=function(z){var v={};var B=c(z,0,[0],"06");v.policyoid=q(B);var C=e(z,0,[1],"30");if(C!=-1){v.array=[];var w=o(z,C);for(var x=0;x<w.length;x++){var A=b(z,w[x]);var y=this.getPolicyQualifierInfo(A);v.array.push(y)}}return v};this.getOtherName=function(x){var v={};var w=o(x,0);var z=c(x,w[0],[],"06");var y=c(x,w[1],[]);v.oid=KJUR.asn1.ASN1Util.oidHexToInt(z);v.obj=g(y);return v};this.getPolicyQualifierInfo=function(w){var v={};var x=c(w,0,[0],"06");if(x==="2b06010505070201"){var z=l(w,0,[1],"16");v.cps=hextorstr(z)}else{if(x==="2b06010505070202"){var y=a(w,0,[1],"30");v.unotice=this.getUserNotice(y)}}return v};this.getUserNotice=function(z){var w={};var x=o(z,0);for(var y=0;y<x.length;y++){var v=b(z,x[y]);if(v.substr(0,2)!="30"){w.exptext=this.getDisplayText(v)}}return w};this.getDisplayText=function(w){var x={"0c":"utf8","16":"ia5","1a":"vis","1e":"bmp"};var v={};v.type=x[w.substr(0,2)];v.str=hextorstr(h(w,0));return v};this.getExtCRLNumber=function(w,x){var v={extname:"cRLNumber"};if(x){v.critical=true}if(w.substr(0,2)=="02"){v.num={hex:h(w,0)};return v}throw new Error("hExtV parse error: "+w)};this.getExtCRLReason=function(w,x){var v={extname:"cRLReason"};if(x){v.critical=true}if(w.substr(0,2)=="0a"){v.code=parseInt(h(w,0),16);return v}throw new Error("hExtV parse error: "+w)};this.getExtOcspNonce=function(w,y){var v={extname:"ocspNonce"};if(y){v.critical=true}var x=h(w,0);v.hex=x;return v};this.getExtOcspNoCheck=function(w,x){var v={extname:"ocspNoCheck"};if(x){v.critical=true}return v};this.getExtAdobeTimeStamp=function(y,B){if(y===undefined&&B===undefined){var A=this.getExtInfo("adobeTimeStamp");if(A===undefined){return undefined}y=b(this.hex,A.vidx);B=A.critical}var v={extname:"adobeTimeStamp"};if(B){v.critical=true}var x=o(y,0);if(x.length>1){var C=b(y,x[1]);var w=this.getGeneralName(C);if(w.uri!=undefined){v.uri=w.uri}}if(x.length>2){var z=b(y,x[2]);if(z=="0101ff"){v.reqauth=true}if(z=="010100"){v.reqauth=false}}return v};this.getX500NameRule=function(v){var C=true;var G=true;var F=false;var w="";var z="";var I=null;var D=[];for(var y=0;y<v.length;y++){var A=v[y];for(var x=0;x<A.length;x++){D.push(A[x])}}for(var y=0;y<D.length;y++){var H=D[y];var J=H.ds;var E=H.value;var B=H.type;w+=":"+J;if(J!="prn"&&J!="utf8"&&J!="ia5"){return"mixed"}if(J=="ia5"){if(B!="CN"){return"mixed"}else{if(!KJUR.lang.String.isMail(E)){return"mixed"}else{continue}}}if(B=="C"){if(J=="prn"){continue}else{return"mixed"}}z+=":"+J;if(I==null){I=J}else{if(I!==J){return"mixed"}}}if(I==null){return"prn"}else{return I}};this.getX500Name=function(x){var v=this.getX500NameArray(x);var w=this.dnarraytostr(v);return{array:v,str:w}};this.getX500NameArray=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getRDN(b(y,w[x])))}return v};this.getRDN=function(y){var v=[];var w=o(y,0);for(var x=0;x<w.length;x++){v.push(this.getAttrTypeAndValue(b(y,w[x])))}return v};this.getAttrTypeAndValue=function(x){var v={type:null,value:null,ds:null};var w=o(x,0);var A=c(x,w[0],[],"06");var z=c(x,w[1],[]);var y=KJUR.asn1.ASN1Util.oidHexToInt(A);v.type=KJUR.asn1.x509.OID.oid2atype(y);v.ds=this.HEX2STAG[x.substr(w[1],2)];if(v.ds!="bmp"){v.value=hextoutf8(z)}else{v.value=ucs2hextoutf8(z)}return v};this.readCertPEM=function(v){this.readCertHex(s(v))};this.readCertHex=function(v){this.hex=v;this.getVersion();try{i(this.hex,0,[0,7],"a3");this.parseExt()}catch(w){}};this.getParam=function(){var v={};v.version=this.getVersion();v.serial={hex:this.getSerialNumberHex()};v.sigalg=this.getSignatureAlgorithmField();v.issuer=this.getIssuer();v.notbefore=this.getNotBefore();v.notafter=this.getNotAfter();v.subject=this.getSubject();v.sbjpubkey=hextopem(this.getPublicKeyHex(),"PUBLIC KEY");if(this.aExtInfo.length>0){v.ext=this.getExtParamArray()}v.sighex=this.getSignatureValueHex();return v};this.getExtParamArray=function(w){if(w==undefined){var y=e(this.hex,0,[0,"[3]"]);if(y!=-1){w=m(this.hex,0,[0,"[3]",0],"30")}}var v=[];var x=o(w,0);for(var z=0;z<x.length;z++){var B=b(w,x[z]);var A=this.getExtParam(B);if(A!=null){v.push(A)}}return v};this.getExtParam=function(w){var D={};var y=o(w,0);var z=y.length;if(z!=2&&z!=3){throw new Error("wrong number elements in Extension: "+z+" "+w)}var x=n(c(w,0,[0],"06"));var B=false;if(z==3&&a(w,0,[1])=="0101ff"){B=true}var C=a(w,0,[z-1,0]);var A=undefined;if(x=="2.5.29.14"){A=this.getExtSubjectKeyIdentifier(C,B)}else{if(x=="2.5.29.15"){A=this.getExtKeyUsage(C,B)}else{if(x=="2.5.29.17"){A=this.getExtSubjectAltName(C,B)}else{if(x=="2.5.29.18"){A=this.getExtIssuerAltName(C,B)}else{if(x=="2.5.29.19"){A=this.getExtBasicConstraints(C,B)}else{if(x=="2.5.29.31"){A=this.getExtCRLDistributionPoints(C,B)}else{if(x=="2.5.29.32"){A=this.getExtCertificatePolicies(C,B)}else{if(x=="2.5.29.35"){A=this.getExtAuthorityKeyIdentifier(C,B)}else{if(x=="2.5.29.37"){A=this.getExtExtKeyUsage(C,B)}else{if(x=="1.3.6.1.5.5.7.1.1"){A=this.getExtAuthorityInfoAccess(C,B)}else{if(x=="2.5.29.20"){A=this.getExtCRLNumber(C,B)}else{if(x=="2.5.29.21"){A=this.getExtCRLReason(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.2"){A=this.getExtOcspNonce(C,B)}else{if(x=="1.3.6.1.5.5.7.48.1.5"){A=this.getExtOcspNoCheck(C,B)}else{if(x=="1.2.840.113583.1.1.9.1"){A=this.getExtAdobeTimeStamp(C,B)}}}}}}}}}}}}}}}if(A!=undefined){return A}var v={extname:x,extn:C};if(B){v.critical=true}return v};this.findExt=function(w,x){for(var v=0;v<w.length;v++){if(w[v].extname==x){return w[v]}}return null};this.updateExtCDPFullURI=function(z,v){var y=this.findExt(z,"cRLDistributionPoints");if(y==null){return}if(y.array==undefined){return}var B=y.array;for(var x=0;x<B.length;x++){if(B[x].dpname==undefined){continue}if(B[x].dpname.full==undefined){continue}var C=B[x].dpname.full;for(var w=0;w<C.length;w++){var A=C[x];if(A.uri==undefined){continue}A.uri=v}}};this.updateExtAIAOCSP=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].ocsp!=undefined){v[x].ocsp=w}}};this.updateExtAIACAIssuer=function(z,w){var y=this.findExt(z,"authorityInfoAccess");if(y==null){return}if(y.array==undefined){return}var v=y.array;for(var x=0;x<v.length;x++){if(v[x].caissuer!=undefined){v[x].caissuer=w}}};this.dnarraytostr=function(x){function v(y){return y.map(function(z){return w(z).replace(/\+/,"\\+")}).join("+")}function w(y){return y.type+"="+y.value}return"/"+x.map(function(y){return v(y).replace(/\//,"\\/")}).join("/")};this.getInfo=function(){var w=function(O){var N=JSON.stringify(O.array).replace(/[\[\]\{\}\"]/g,"");return N};var C=function(T){var R="";var N=T.array;for(var Q=0;Q<N.length;Q++){var S=N[Q];R+="    policy oid: "+S.policyoid+"\n";if(S.array===undefined){continue}for(var P=0;P<S.array.length;P++){var O=S.array[P];if(O.cps!==undefined){R+="    cps: "+O.cps+"\n"}}}return R};var F=function(R){var Q="";var N=R.array;for(var P=0;P<N.length;P++){var S=N[P];try{if(S.dpname.full[0].uri!==undefined){Q+="    "+S.dpname.full[0].uri+"\n"}}catch(O){}try{if(S.dname.full[0].dn.hex!==undefined){Q+="    "+X509.hex2dn(S.dpname.full[0].dn.hex)+"\n"}}catch(O){}}return Q};var D=function(R){var Q="";var N=R.array;for(var O=0;O<N.length;O++){var P=N[O];if(P.caissuer!==undefined){Q+="    caissuer: "+P.caissuer+"\n"}if(P.ocsp!==undefined){Q+="    ocsp: "+P.ocsp+"\n"}}return Q};var x=X509;var H,G,M;H="Basic Fields\n";H+="  serial number: "+this.getSerialNumberHex()+"\n";H+="  signature algorithm: "+this.getSignatureAlgorithmField()+"\n";H+="  issuer: "+this.getIssuerString()+"\n";H+="  notBefore: "+this.getNotBefore()+"\n";H+="  notAfter: "+this.getNotAfter()+"\n";H+="  subject: "+this.getSubjectString()+"\n";H+="  subject public key info: \n";G=this.getPublicKey();H+="    key algorithm: "+G.type+"\n";if(G.type==="RSA"){H+="    n="+hextoposhex(G.n.toString(16)).substr(0,16)+"...\n";H+="    e="+hextoposhex(G.e.toString(16))+"\n"}M=this.aExtInfo;if(M!==undefined&&M!==null){H+="X509v3 Extensions:\n";for(var J=0;J<M.length;J++){var L=M[J];var v=KJUR.asn1.x509.OID.oid2name(L.oid);if(v===""){v=L.oid}var I="";if(L.critical===true){I="CRITICAL"}H+="  "+v+" "+I+":\n";if(v==="basicConstraints"){var y=this.getExtBasicConstraints();if(y.cA===undefined){H+="    {}\n"}else{H+="    cA=true";if(y.pathLen!==undefined){H+=", pathLen="+y.pathLen}H+="\n"}}else{if(v==="keyUsage"){H+="    "+this.getExtKeyUsageString()+"\n"}else{if(v==="subjectKeyIdentifier"){H+="    "+this.getExtSubjectKeyIdentifier().kid.hex+"\n"}else{if(v==="authorityKeyIdentifier"){var z=this.getExtAuthorityKeyIdentifier();if(z.kid!==undefined){H+="    kid="+z.kid.hex+"\n"}}else{if(v==="extKeyUsage"){var K=this.getExtExtKeyUsage().array;H+="    "+K.join(", ")+"\n"}else{if(v==="subjectAltName"){var A=w(this.getExtSubjectAltName());H+="    "+A+"\n"}else{if(v==="cRLDistributionPoints"){var E=this.getExtCRLDistributionPoints();H+=F(E)}else{if(v==="authorityInfoAccess"){var B=this.getExtAuthorityInfoAccess();H+=D(B)}else{if(v==="certificatePolicies"){H+=C(this.getExtCertificatePolicies())}}}}}}}}}}}H+="signature algorithm: "+this.getSignatureAlgorithmName()+"\n";H+="signature: "+this.getSignatureValueHex().substr(0,16)+"...\n";return H};if(typeof r=="string"){if(r.indexOf("-----BEGIN")!=-1){this.readCertPEM(r)}else{if(KJUR.lang.String.isHex(r)){this.readCertHex(r)}}}}X509.hex2dn=function(e,b){if(b===undefined){b=0}var a=new X509();var c=ASN1HEX.getTLV(e,b);var d=a.getX500Name(e);return d.str};X509.hex2rdn=function(f,b){if(b===undefined){b=0}if(f.substr(b,2)!=="31"){throw new Error("malformed RDN")}var c=new Array();var d=ASN1HEX.getChildIdx(f,b);for(var e=0;e<d.length;e++){c.push(X509.hex2attrTypeValue(f,d[e]))}c=c.map(function(a){return a.replace("+","\\+")});return c.join("+")};X509.hex2attrTypeValue=function(d,i){var j=ASN1HEX;var h=j.getV;if(i===undefined){i=0}if(d.substr(i,2)!=="30"){throw new Error("malformed attribute type and value")}var g=j.getChildIdx(d,i);if(g.length!==2||d.substr(g[0],2)!=="06"){"malformed attribute type and value"}var b=h(d,g[0]);var f=KJUR.asn1.ASN1Util.oidHexToInt(b);var e=KJUR.asn1.x509.OID.oid2atype(f);var a=h(d,g[1]);var c=hextorstr(a);return e+"="+c};X509.getPublicKeyFromCertHex=function(b){var a=new X509();a.readCertHex(b);return a.getPublicKey()};X509.getPublicKeyFromCertPEM=function(b){var a=new X509();a.readCertPEM(b);return a.getPublicKey()};X509.getPublicKeyInfoPropOfCertPEM=function(c){var e=ASN1HEX;var g=e.getVbyList;var b={};var a,f,d;b.algparam=null;a=new X509();a.readCertPEM(c);f=a.getPublicKeyHex();b.keyhex=g(f,0,[1],"03").substr(2);b.algoid=g(f,0,[0,0],"06");if(b.algoid==="2a8648ce3d0201"){b.algparam=g(f,0,[0,1],"06")}return b};X509.KEYUSAGE_NAME=["digitalSignature","nonRepudiation","keyEncipherment","dataEncipherment","keyAgreement","keyCertSign","cRLSign","encipherOnly","decipherOnly"];
-var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(sn)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
+var X509CRL=function(e){var a=KJUR,f=a.lang.String.isHex,m=ASN1HEX,k=m.getV,b=m.getTLV,h=m.getVbyList,c=m.getTLVbyList,d=m.getTLVbyListEx,i=m.getIdxbyList,g=m.getIdxbyListEx,l=m.getChildIdx,j=new X509();this.hex=null;this.posSigAlg=null;this.posRevCert=null;this.parsed=null;this._setPos=function(){var o=i(this.hex,0,[0,0]);var n=this.hex.substr(o,2);if(n=="02"){this.posSigAlg=1}else{if(n=="30"){this.posSigAlg=0}else{throw new Error("malformed 1st item of TBSCertList: "+n)}}var s=i(this.hex,0,[0,this.posSigAlg+3]);var r=this.hex.substr(s,2);if(r=="17"||r=="18"){var q,p;q=i(this.hex,0,[0,this.posSigAlg+4]);this.posRevCert=null;if(q!=-1){p=this.hex.substr(q,2);if(p=="30"){this.posRevCert=this.posSigAlg+4}}}else{if(r=="30"){this.posRevCert=this.posSigAlg+3}else{if(r=="a0"){this.posRevCert=null}else{throw new Error("malformed nextUpdate or revCert tag: "+r)}}}};this.getVersion=function(){if(this.posSigAlg==0){return null}return parseInt(h(this.hex,0,[0,0],"02"),16)+1};this.getSignatureAlgorithmField=function(){var n=c(this.hex,0,[0,this.posSigAlg],"30");return j.getAlgorithmIdentifierName(n)};this.getIssuer=function(){return j.getX500Name(this.getIssuerHex())};this.getIssuerHex=function(){return c(this.hex,0,[0,this.posSigAlg+1],"30")};this.getThisUpdate=function(){var n=h(this.hex,0,[0,this.posSigAlg+2]);return result=hextorstr(n)};this.getNextUpdate=function(){var o=i(this.hex,0,[0,this.posSigAlg+3]);var n=this.hex.substr(o,2);if(n!="17"&&n!="18"){return null}return hextorstr(k(this.hex,o))};this.getRevCertArray=function(){if(this.posRevCert==null){return null}var o=[];var n=i(this.hex,0,[0,this.posRevCert]);var p=l(this.hex,n);for(var q=0;q<p.length;q++){var r=b(this.hex,p[q]);o.push(this.getRevCert(r))}return o};this.getRevCert=function(p){var o={};var n=l(p,0);o.sn={hex:h(p,0,[0],"02")};o.date=hextorstr(h(p,0,[1]));if(n.length==3){o.ext=j.getExtParamArray(c(p,0,[2]))}return o};this.findRevCert=function(p){var n=new X509(p);var o=n.getSerialNumberHex();return this.findRevCertBySN(o)};this.findRevCertBySN=function(o){if(this.parsed==null){this.getParam()}var n=this.parsed.revcert;for(var p=0;p<n.length;p++){if(o==n[p].sn.hex){return n[p]}}return null};this.getSignatureValueHex=function(){return h(this.hex,0,[2],"03",true)};this.verifySignature=function(o){var p=this.getSignatureAlgorithmField();var n=this.getSignatureValueHex();var q=c(this.hex,0,[0],"30");var r=new KJUR.crypto.Signature({alg:p});r.init(o);r.updateHex(q);return r.verify(n)};this.getParam=function(){var n={};var p=this.getVersion();if(p!=null){n.version=p}n.sigalg=this.getSignatureAlgorithmField();n.issuer=this.getIssuer();n.thisupdate=this.getThisUpdate();var q=this.getNextUpdate();if(q!=null){n.nextupdate=q}var s=this.getRevCertArray();if(s!=null){n.revcert=s}var r=g(this.hex,0,[0,"[0]"]);if(r!=-1){var o=d(this.hex,0,[0,"[0]",0]);n.ext=j.getExtParamArray(o)}n.sighex=this.getSignatureValueHex();this.parsed=n;return n};if(typeof e=="string"){if(f(e)){this.hex=e}else{if(e.match(/-----BEGIN X509 CRL/)){this.hex=pemtohex(e)}}this._setPos()}};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWS=function(){var b=KJUR,a=b.jws.JWS,c=a.isSafeJSONString;this.parseJWS=function(g,j){if((this.parsedJWS!==undefined)&&(j||(this.parsedJWS.sigvalH!==undefined))){return}var i=g.match(/^([^.]+)\.([^.]+)\.([^.]+)$/);if(i==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}var k=i[1];var e=i[2];var l=i[3];var n=k+"."+e;this.parsedJWS={};this.parsedJWS.headB64U=k;this.parsedJWS.payloadB64U=e;this.parsedJWS.sigvalB64U=l;this.parsedJWS.si=n;if(!j){var h=b64utohex(l);var f=parseBigInt(h,16);this.parsedJWS.sigvalH=h;this.parsedJWS.sigvalBI=f}var d=b64utoutf8(k);var m=b64utoutf8(e);this.parsedJWS.headS=d;this.parsedJWS.payloadS=m;if(!c(d,this.parsedJWS,"headP")){throw"malformed JSON string for JWS Head: "+d}}};KJUR.jws.JWS.sign=function(j,w,z,A,a){var x=KJUR,n=x.jws,r=n.JWS,h=r.readSafeJSONString,q=r.isSafeJSONString,d=x.crypto,l=d.ECDSA,p=d.Mac,c=d.Signature,u=JSON;var t,k,o;if(typeof w!="string"&&typeof w!="object"){throw"spHeader must be JSON string or object: "+w}if(typeof w=="object"){k=w;t=u.stringify(k)}if(typeof w=="string"){t=w;if(!q(t)){throw"JWS Head is not safe JSON string: "+t}k=h(t)}o=z;if(typeof z=="object"){o=u.stringify(z)}if((j==""||j==null)&&k.alg!==undefined){j=k.alg}if((j!=""&&j!=null)&&k.alg===undefined){k.alg=j;t=u.stringify(k)}if(j!==k.alg){throw"alg and sHeader.alg doesn't match: "+j+"!="+k.alg}var s=null;if(r.jwsalg2sigalg[j]===undefined){throw"unsupported alg name: "+j}else{s=r.jwsalg2sigalg[j]}var e=utf8tob64u(t);var m=utf8tob64u(o);var b=e+"."+m;var y="";if(s.substr(0,4)=="Hmac"){if(A===undefined){throw"mac key shall be specified for HS* alg"}var i=new p({alg:s,prov:"cryptojs",pass:A});i.updateString(b);y=i.doFinal()}else{if(s.indexOf("withECDSA")!=-1){var f=new c({alg:s});f.init(A,a);f.updateString(b);var g=f.sign();y=KJUR.crypto.ECDSA.asn1SigToConcatSig(g)}else{if(s!="none"){var f=new c({alg:s});f.init(A,a);f.updateString(b);y=f.sign()}}}var v=hextob64u(y);return b+"."+v};KJUR.jws.JWS.verify=function(w,B,n){var x=KJUR,q=x.jws,t=q.JWS,i=t.readSafeJSONString,e=x.crypto,p=e.ECDSA,s=e.Mac,d=e.Signature,m;if(typeof RSAKey!==undefined){m=RSAKey}var y=w.split(".");if(y.length!==3){return false}var f=y[0];var r=y[1];var c=f+"."+r;var A=b64utohex(y[2]);var l=i(b64utoutf8(y[0]));var k=null;var z=null;if(l.alg===undefined){throw"algorithm not specified in header"}else{k=l.alg;z=k.substr(0,2)}if(n!=null&&Object.prototype.toString.call(n)==="[object Array]"&&n.length>0){var b=":"+n.join(":")+":";if(b.indexOf(":"+k+":")==-1){throw"algorithm '"+k+"' not accepted in the list"}}if(k!="none"&&B===null){throw"key shall be specified to verify."}if(typeof B=="string"&&B.indexOf("-----BEGIN ")!=-1){B=KEYUTIL.getKey(B)}if(z=="RS"||z=="PS"){if(!(B instanceof m)){throw"key shall be a RSAKey obj for RS* and PS* algs"}}if(z=="ES"){if(!(B instanceof p)){throw"key shall be a ECDSA obj for ES* algs"}}if(k=="none"){}var u=null;if(t.jwsalg2sigalg[l.alg]===undefined){throw"unsupported alg name: "+k}else{u=t.jwsalg2sigalg[k]}if(u=="none"){throw"not supported"}else{if(u.substr(0,4)=="Hmac"){var o=null;if(B===undefined){throw"hexadecimal key shall be specified for HMAC"}var j=new s({alg:u,pass:B});j.updateString(c);o=j.doFinal();return A==o}else{if(u.indexOf("withECDSA")!=-1){var h=null;try{h=p.concatSigToASN1Sig(A)}catch(v){return false}var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(h)}else{var g=new d({alg:u});g.init(B);g.updateString(c);return g.verify(A)}}}};KJUR.jws.JWS.parse=function(g){var c=g.split(".");var b={};var f,e,d;if(c.length!=2&&c.length!=3){throw"malformed sJWS: wrong number of '.' splitted elements"}f=c[0];e=c[1];if(c.length==3){d=c[2]}b.headerObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(f));b.payloadObj=KJUR.jws.JWS.readSafeJSONString(b64utoutf8(e));b.headerPP=JSON.stringify(b.headerObj,null,"  ");if(b.payloadObj==null){b.payloadPP=b64utoutf8(e)}else{b.payloadPP=JSON.stringify(b.payloadObj,null,"  ")}if(d!==undefined){b.sigHex=b64utohex(d)}return b};KJUR.jws.JWS.verifyJWT=function(e,l,r){var d=KJUR,j=d.jws,o=j.JWS,n=o.readSafeJSONString,p=o.inArray,f=o.includedArray;var k=e.split(".");var c=k[0];var i=k[1];var q=c+"."+i;var m=b64utohex(k[2]);var h=n(b64utoutf8(c));var g=n(b64utoutf8(i));if(h.alg===undefined){return false}if(r.alg===undefined){throw"acceptField.alg shall be specified"}if(!p(h.alg,r.alg)){return false}if(g.iss!==undefined&&typeof r.iss==="object"){if(!p(g.iss,r.iss)){return false}}if(g.sub!==undefined&&typeof r.sub==="object"){if(!p(g.sub,r.sub)){return false}}if(g.aud!==undefined&&typeof r.aud==="object"){if(typeof g.aud=="string"){if(!p(g.aud,r.aud)){return false}}else{if(typeof g.aud=="object"){if(!f(g.aud,r.aud)){return false}}}}var b=j.IntDate.getNow();if(r.verifyAt!==undefined&&typeof r.verifyAt==="number"){b=r.verifyAt}if(r.gracePeriod===undefined||typeof r.gracePeriod!=="number"){r.gracePeriod=0}if(g.exp!==undefined&&typeof g.exp=="number"){if(g.exp+r.gracePeriod<b){return false}}if(g.nbf!==undefined&&typeof g.nbf=="number"){if(b<g.nbf-r.gracePeriod){return false}}if(g.iat!==undefined&&typeof g.iat=="number"){if(b<g.iat-r.gracePeriod){return false}}if(g.jti!==undefined&&r.jti!==undefined){if(g.jti!==r.jti){return false}}if(!o.verify(e,l,r.alg)){return false}return true};KJUR.jws.JWS.includedArray=function(b,a){var c=KJUR.jws.JWS.inArray;if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var d=0;d<b.length;d++){if(!c(b[d],a)){return false}}return true};KJUR.jws.JWS.inArray=function(d,b){if(b===null){return false}if(typeof b!=="object"){return false}if(typeof b.length!=="number"){return false}for(var c=0;c<b.length;c++){if(b[c]==d){return true}}return false};KJUR.jws.JWS.jwsalg2sigalg={HS256:"HmacSHA256",HS384:"HmacSHA384",HS512:"HmacSHA512",RS256:"SHA256withRSA",RS384:"SHA384withRSA",RS512:"SHA512withRSA",ES256:"SHA256withECDSA",ES384:"SHA384withECDSA",ES512:"SHA512withECDSA",PS256:"SHA256withRSAandMGF1",PS384:"SHA384withRSAandMGF1",PS512:"SHA512withRSAandMGF1",none:"none",};KJUR.jws.JWS.isSafeJSONString=function(c,b,d){var e=null;try{e=jsonParse(c);if(typeof e!="object"){return 0}if(e.constructor===Array){return 0}if(b){b[d]=e}return 1}catch(a){return 0}};KJUR.jws.JWS.readSafeJSONString=function(b){var c=null;try{c=jsonParse(b);if(typeof c!="object"){return null}if(c.constructor===Array){return null}return c}catch(a){return null}};KJUR.jws.JWS.getEncodedSignatureValueFromJWS=function(b){var a=b.match(/^[^.]+\.[^.]+\.([^.]+)$/);if(a==null){throw"JWS signature is not a form of 'Head.Payload.SigValue'."}return a[1]};KJUR.jws.JWS.getJWKthumbprint=function(d){if(d.kty!=="RSA"&&d.kty!=="EC"&&d.kty!=="oct"){throw"unsupported algorithm for JWK Thumprint"}var a="{";if(d.kty==="RSA"){if(typeof d.n!="string"||typeof d.e!="string"){throw"wrong n and e value for RSA key"}a+='"e":"'+d.e+'",';a+='"kty":"'+d.kty+'",';a+='"n":"'+d.n+'"}'}else{if(d.kty==="EC"){if(typeof d.crv!="string"||typeof d.x!="string"||typeof d.y!="string"){throw"wrong crv, x and y value for EC key"}a+='"crv":"'+d.crv+'",';a+='"kty":"'+d.kty+'",';a+='"x":"'+d.x+'",';a+='"y":"'+d.y+'"}'}else{if(d.kty==="oct"){if(typeof d.k!="string"){throw"wrong k value for oct(symmetric) key"}a+='"kty":"'+d.kty+'",';a+='"k":"'+d.k+'"}'}}}var b=rstrtohex(a);var c=KJUR.crypto.Util.hashHex(b,"sha256");var e=hextob64u(c);return e};KJUR.jws.IntDate={};KJUR.jws.IntDate.get=function(c){var b=KJUR.jws.IntDate,d=b.getNow,a=b.getZulu;if(c=="now"){return d()}else{if(c=="now + 1hour"){return d()+60*60}else{if(c=="now + 1day"){return d()+60*60*24}else{if(c=="now + 1month"){return d()+60*60*24*30}else{if(c=="now + 1year"){return d()+60*60*24*365}else{if(c.match(/Z$/)){return a(c)}else{if(c.match(/^[0-9]+$/)){return parseInt(c)}}}}}}}throw"unsupported format: "+c};KJUR.jws.IntDate.getZulu=function(a){return zulutosec(a)};KJUR.jws.IntDate.getNow=function(){var a=~~(new Date()/1000);return a};KJUR.jws.IntDate.intDate2UTCString=function(a){var b=new Date(a*1000);return b.toUTCString()};KJUR.jws.IntDate.intDate2Zulu=function(e){var i=new Date(e*1000),h=("0000"+i.getUTCFullYear()).slice(-4),g=("00"+(i.getUTCMonth()+1)).slice(-2),b=("00"+i.getUTCDate()).slice(-2),a=("00"+i.getUTCHours()).slice(-2),c=("00"+i.getUTCMinutes()).slice(-2),f=("00"+i.getUTCSeconds()).slice(-2);return h+g+b+a+c+f+"Z"};
 if(typeof KJUR=="undefined"||!KJUR){KJUR={}}if(typeof KJUR.jws=="undefined"||!KJUR.jws){KJUR.jws={}}KJUR.jws.JWSJS=function(){var c=KJUR,b=c.jws,a=b.JWS,d=a.readSafeJSONString;this.aHeader=[];this.sPayload="";this.aSignature=[];this.init=function(){this.aHeader=[];this.sPayload=undefined;this.aSignature=[]};this.initWithJWS=function(f){this.init();var e=f.split(".");if(e.length!=3){throw"malformed input JWS"}this.aHeader.push(e[0]);this.sPayload=e[1];this.aSignature.push(e[2])};this.addSignature=function(e,h,m,k){if(this.sPayload===undefined||this.sPayload===null){throw"there's no JSON-JS signature to add."}var l=this.aHeader.length;if(this.aHeader.length!=this.aSignature.length){throw"aHeader.length != aSignature.length"}try{var f=KJUR.jws.JWS.sign(e,h,this.sPayload,m,k);var j=f.split(".");var n=j[0];var g=j[2];this.aHeader.push(j[0]);this.aSignature.push(j[2])}catch(i){if(this.aHeader.length>l){this.aHeader.pop()}if(this.aSignature.length>l){this.aSignature.pop()}throw"addSignature failed: "+i}};this.verifyAll=function(h){if(this.aHeader.length!==h.length||this.aSignature.length!==h.length){return false}for(var g=0;g<h.length;g++){var f=h[g];if(f.length!==2){return false}var e=this.verifyNth(g,f[0],f[1]);if(e===false){return false}}return true};this.verifyNth=function(f,j,g){if(this.aHeader.length<=f||this.aSignature.length<=f){return false}var h=this.aHeader[f];var k=this.aSignature[f];var l=h+"."+this.sPayload+"."+k;var e=false;try{e=a.verify(l,j,g)}catch(i){return false}return e};this.readJWSJS=function(g){if(typeof g==="string"){var f=d(g);if(f==null){throw"argument is not safe JSON object string"}this.aHeader=f.headers;this.sPayload=f.payload;this.aSignature=f.signatures}else{try{if(g.headers.length>0){this.aHeader=g.headers}else{throw"malformed header"}if(typeof g.payload==="string"){this.sPayload=g.payload}else{throw"malformed signatures"}if(g.signatures.length>0){this.aSignature=g.signatures}else{throw"malformed signatures"}}catch(e){throw"malformed JWS-JS JSON object: "+e}}};this.getJSON=function(){return{headers:this.aHeader,payload:this.sPayload,signatures:this.aSignature}};this.isEmpty=function(){if(this.aHeader.length==0){return 1}return 0}};
 exports.SecureRandom = SecureRandom;
diff --git a/npm/package.json b/npm/package.json
index 93dc52d0..98049da2 100755
--- a/npm/package.json
+++ b/npm/package.json
@@ -1,6 +1,6 @@
 {
   "name": "jsrsasign",
-  "version": "10.5.5",
+  "version": "10.5.6",
   "description": "opensource free pure JavaScript cryptographic library supports RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CRL, OCSP, CMS SignedData, TimeStamp and CAdES and JSON Web Signature(JWS)/Token(JWT)/Key(JWK).",
   "main": "lib/jsrsasign.js",
   "scripts": {
diff --git a/src/x509crl.js b/src/x509crl.js
index a592f7e2..2d3b88fc 100644
--- a/src/x509crl.js
+++ b/src/x509crl.js
@@ -346,7 +346,7 @@ var X509CRL = function(params) {
     this.findRevCert = function(sCert) {
 	var x = new X509(sCert);
 	var hSN = x.getSerialNumberHex();
-	return this.findRevCertBySN(sn);
+	return this.findRevCertBySN(hSN);
     };
     
     /**